abbot/httpd-dashboard.conf

## httpd-dashboard.conf
<VirtualHost xxx.xxx.xxx.xxx:80>
  RedirectMatch ^/dashboard$ https://myhost/dashboard/
  RedirectMatch ^/dashboard/$ https://myhost/dashboard/
  RedirectMatch ^/dashboard/(.*)$ https://myhost/dashboard/$1
</VirtualHost>

<VirtualHost 127.0.0.1:80>
  ServerName myhost
  DocumentRoot /var/www/html
  RailsBaseURI /dashboard
  <Directory /var/www/html/dashboard>
    AllowOverride all
    Options -MultiViews
  </Directory>
</VirtualHost>

<VirtualHost *:443>
  SSLEngine On
  SSLCipherSuite SSLv2:-LOW:-EXPORT:RC4+RSA
  SSLCertificateFile /var/lib/puppet/ssl/certs/myhost.pem
  SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/myhost.pem
  SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
  SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem
  SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
  SSLOptions +StdEnvVars

  ServerName myhost
  DocumentRoot /var/www/html
  RailsBaseURI /dashboard
  <Directory /var/www/html/dashboard>
    AllowOverride all
    Options -MultiViews
  </Directory>
  <Location /dashboard>
    AuthType Basic
    AuthName "Puppet Dashboard"
    AuthBasicProvider ldap
    AuthLDAPURL "ldap://ldap.examle.org:389/ou=People,dc=example,dc=org?uid"
    AuthLDAPBindDN "cn=myhost,ou=ServiceAccounts,dc=example,dc=org"
    AuthLDAPBindPassword "xxxxxxxx"
    AuthzLDAPAuthoritative off
    Require user admin1 admin2
  </Location>
</VirtualHost>

## httpd-puppet.conf
Listen 8140

<Proxy balancer://puppetmaster>
        BalancerMember http://127.0.0.1:18140
        BalancerMember http://127.0.0.1:18141
        BalancerMember http://127.0.0.1:18142
        BalancerMember http://127.0.0.1:18143
</Proxy>

<VirtualHost *:8140>
        SSLEngine On
        SSLCipherSuite SSLv2:-LOW:-EXPORT:RC4+RSA
        SSLCertificateFile /var/lib/puppet/ssl/certs/myhost.pem
        SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/myhost.pem
        SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
        SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem
        SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
        #SSLVerifyClient require
        SSLVerifyClient optional
        SSLVerifyDepth 1
        SSLOptions +StdEnvVars

        RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e
        RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e

        <Location />
                SetHandler balancer-manager
                Order allow,deny
                Allow from all
        </Location>

        ProxyPass / balancer://puppetmaster/
        ProxyPassReverse / balancer://puppetmaster/
        ProxyPreserveHost On

        ErrorLog /var/log/httpd/puppet_error_log
        CustomLog /var/log/httpd/puppet_access_log combined
        CustomLog /var/log/httpd/puppet_ssl_requests "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>

## monitrc
set daemon  60 with start delay 240
set idfile /var/run/monit.id
set statefile /var/run/monit.state
set httpd port 2812 and
    use address localhost
    allow localhost
    allow admin:monit
    allow @monit
include /etc/monit.d/*
	<VirtualHost xxx.xxx.xxx.xxx:80>
	RedirectMatch ^/dashboard$ https://myhost/dashboard/
	RedirectMatch ^/dashboard/$ https://myhost/dashboard/
	RedirectMatch ^/dashboard/(.*)$ https://myhost/dashboard/$1
	</VirtualHost>

	<VirtualHost 127.0.0.1:80>
	ServerName myhost
	DocumentRoot /var/www/html
	RailsBaseURI /dashboard
	<Directory /var/www/html/dashboard>
	AllowOverride all
	Options -MultiViews
	</Directory>
	</VirtualHost>

	<VirtualHost *:443>
	SSLEngine On
	SSLCipherSuite SSLv2:-LOW:-EXPORT:RC4+RSA
	SSLCertificateFile /var/lib/puppet/ssl/certs/myhost.pem
	SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/myhost.pem
	SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
	SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem
	SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
	SSLOptions +StdEnvVars

	ServerName myhost
	DocumentRoot /var/www/html
	RailsBaseURI /dashboard
	<Directory /var/www/html/dashboard>
	AllowOverride all
	Options -MultiViews
	</Directory>
	<Location /dashboard>
	AuthType Basic
	AuthName "Puppet Dashboard"
	AuthBasicProvider ldap
	AuthLDAPURL "ldap://ldap.examle.org:389/ou=People,dc=example,dc=org?uid"
	AuthLDAPBindDN "cn=myhost,ou=ServiceAccounts,dc=example,dc=org"
	AuthLDAPBindPassword "xxxxxxxx"
	AuthzLDAPAuthoritative off
	Require user admin1 admin2
	</Location>
	</VirtualHost>
	Listen 8140

	<Proxy balancer://puppetmaster>
	BalancerMember http://127.0.0.1:18140
	BalancerMember http://127.0.0.1:18141
	BalancerMember http://127.0.0.1:18142
	BalancerMember http://127.0.0.1:18143
	</Proxy>

	<VirtualHost *:8140>
	SSLEngine On
	SSLCipherSuite SSLv2:-LOW:-EXPORT:RC4+RSA
	SSLCertificateFile /var/lib/puppet/ssl/certs/myhost.pem
	SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/myhost.pem
	SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
	SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem
	SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
	#SSLVerifyClient require
	SSLVerifyClient optional
	SSLVerifyDepth 1
	SSLOptions +StdEnvVars

	RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e
	RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e

	<Location />
	SetHandler balancer-manager
	Order allow,deny
	Allow from all
	</Location>

	ProxyPass / balancer://puppetmaster/
	ProxyPassReverse / balancer://puppetmaster/
	ProxyPreserveHost On

	ErrorLog /var/log/httpd/puppet_error_log
	CustomLog /var/log/httpd/puppet_access_log combined
	CustomLog /var/log/httpd/puppet_ssl_requests "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
	</VirtualHost>
	set daemon 60 with start delay 240
	set idfile /var/run/monit.id
	set statefile /var/run/monit.state
	set httpd port 2812 and
	use address localhost
	allow localhost
	allow admin:monit
	allow @monit
	include /etc/monit.d/*