I am setting up a reverse proxy to an internal webserver from an apache server with a public IP. I want to use Basic Auth and SSL on the public apache server which then forwards standard http, non-ssl traffic, to the internal webserver. Basic auth with ProxyPass works perfectly without using ssl but when using ssl the browser prompts me for the credentials but apache never accepts them as valid. Accessing the internal site with ssl and ProxyPass WITHOUT basic auth required works as well. This configuration works great without using ssl: <VirtualHost *:80> ProxyPass / http://site.internal/ retry=0 ProxyPassReverse / http://site.internal/ ProxyPreserveHost On <Location /> AuthType Basic AuthName "Restricted Area" AuthUserFile /usr/local/apache/access-file Require valid-user </Location> </VirtualHost> However this configuration does not work, however if I remove basic auth I can get through: <VirtualHost *:443> ProxyPass / http://site.interal/ retry=0 ProxyPassReverse / http://site.internal/ ProxyPreserveHost On <Location /> AuthType Basic AuthName "AFC Restricted Access" AuthUserFile /user/local/apache/access-file Require valid-user </Location> <VirtualHost> What am I missing? --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx