# Prevent the server from serving the .htaccess file
<Files ".htaccess">  
  Require all denied
</Files>
# Require the page to be accessed via SSL (https)
SSLRequireSSL
# SUBSTITUTE Error Document with the URL you wish to protect. This will redirect any non-https requests to the correct https version.
ErrorDocument 403 https://web.eecs.utk.edu/~netid/protected

AuthType Basic
# AuthName sets the "authentication realm" and is sometimes presented to the user by the browser
# as part of the password prompt. 
# SUBSTITUTE this as desired
AuthName "Authorized Users Only"

AuthBasicProvider ldap
AuthLDAPURL ldap://ldap.eecs.utk.edu/ou=People,dc=cs,dc=utk,dc=edu STARTTLS
# SUBSTITUTE netid1, netid2, with a list of all users that should have access
Require ldap-user netid1, netid2