diff --git a/mysql/user.sls b/mysql/user.sls
index b96a5bb..b937343 100644
--- a/mysql/user.sls
+++ b/mysql/user.sls
@@ -79,6 +79,20 @@ include:
     - grant: {{db['grants']|join(",")}}
     - database: '{{ db['database'] }}.{{ db['table'] | default('*') }}'
     - grant_option: {{ db['grant_option'] | default(False) }}
+    - ssl_option:
+      - SSL: {{ user['ssl'] | default(False) }}
+    {% if user['ssl-X509'] is defined %}
+      - X509: {{ user['ssl-X509'] }}
+    {% endif %}
+    {% if user['ssl-SUBJECT'] is defined %}
+      - SUBJECT: {{ user['ssl-SUBJECT'] }}
+    {% endif %}
+    {% if user['ssl-ISSUER'] is defined %}
+      - ISSUER: {{ user['ssl-ISSUER'] }}
+    {% endif %}
+    {% if user['ssl-CIPHER'] is defined %}
+      - CIPHER: {{ user['ssl-CIPHER'] }}
+    {% endif %}
     - user: {{ name }}
     - host: '{{ host }}'
     - connection_host: '{{ mysql_host }}'
diff --git a/pillar.example b/pillar.example
index 4df0713..70801ef 100644
--- a/pillar.example
+++ b/pillar.example
@@ -70,6 +70,11 @@ mysql:
     bob:
       password_hash: '*6C8989366EAF75BB670AD8EA7A7FC1176A95CEF4'
       host: localhost
+      ssl: True
+      ssl-X509: True
+      ssl-SUBJECT: Subject
+      ssl-ISSUER: Name
+      ssl-CIPHER: Cipher
       databases:
         - database: foo
           grants: ['all privileges']