Adobe 38043740 - ColdFusion Standard - Mac Manual page 30

Deny from all
Allow from 127.0.0.1
</Location>
The above blocks all requests starting with /CFIDE for all IP's except 127.0.0.1. You may want to change that
to the IP address of an administration workstation instead, to allow yourself access to the ColdFusion
Administrator.
<Location /CFIDE/GraphData.cfm>
Order Deny,Allow
Allow from all
</Location>
The above allows the URI /CFIDE/GraphData.cfm to pass through to ColdFusion. If you are not using
cfchart you may skip this step. See Table 2.2.8.1 CFIDE URIs for a full list of URIs to determine if other
URIs should be whitelisted under CFIDE.
Next lets create a virtual host for the ColdFusion administrator website. This example uses the self signed
certificate generated during installation, it is recommended that you use a signed certificate instead.
<VirtualHost 127.0.0.1:443>
ServerName localhost
DocumentRoot /web/cfadmin/wwwroot/
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
SSLProtocol +SSLv3 +TLSv1
SSLCipherSuite RSA:!EXP:!NULL:+HIGH:-MEDIUM:-LOW
ErrorLog logs/cfadmin.ssl.error.log
CustomLog logs/cfadmin.ssl.access.log common
</VirtualHost>
The above creates a virtual host allowing you to access the ColdFusion administrator at
https://localhost/CFIDE/administrator/
Next let's tell apache that SSL is required for the URI /CFIDE/administrator:
30