...
Alternatively, you can create a key file to contain the password passwords of the keystore and its private keys. Use org.apache.geronimo.keyStoreTrustStorePasswordFile
property to specify the key file. See Configuring SSL client authentication for more detailed instructions.
...