How do you turn on ssl debugging

I’m in a situation where I’m setting up mutual ssl for Keycloak. We have already setup regular ssl for a demo openLDAP so we have that working. But setting up mutual authentication does not and the errors are very terse. I also don’t have access to the openldap logs.
I’ve tried everything from passing in -Djavax.net.ssl=ssl in JAVA_OPTS env variable in the container to copying standalone.conf over the original. Although, the file doesn’t copy correctly when I build the new container. Is there an easy way to do this?

It appears I was running a different version then the one I had built.