ProxyPass /shibboleth-idp/ ajp://localhost:8009/shibboleth-idp/
# this is needed ONLY FOR TESTING, so REMOVE IT after the installation
ProxyPass /examples/ ajp://127.0.0.1:8009/examples/

<Location /shibboleth-idp/SSO>
	 <IfModule authnz_ldap_module>
	 AuthType Basic
	 AuthName "Use your RSC Wales Login here"
	 AuthBasicProvider ldap
	 AuthLDAPURL "ldap://10.0.0.2:389/dc=rsc-wales,dc=local?sAMAccountName"
	 AuthLDAPBindDN "cn=ldap,ou=ServiceAccounts,dc=rsc-wales,dc=local"
	 AuthLDAPBindPassword "password"
	 AuthzLDAPAuthoritative Off
 	 require valid-user
	 </IfModule>
</Location>

Listen 8443

<VirtualHost _default_:8443>
	 SSLEngine on
	 SSLCipherSuite ALL:!ADH:!EXPORT56:!EXPORT40:RC4+RSA:!SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
	 SSLVerifyClient optional_no_ca
	 SSLVerifyDepth 10
	 SSLOptions +StdEnvVars +ExportCertData
	 SSLCertificateFile /etc/apache2/ssl/idp-globalsign.pem
	 SSLCertificateKeyFile /etc/apache2/ssl/idp-key.pem
  	 ErrorLog /var/log/apache2/ssl_error_log
	 TransferLog /var/log/apache2/ssl_access_log
</VirtualHost>