The official EC2 Service Configuration guide explains how to configure lighttpd to provide an SSL proxy for the econe service. This guide explains how to do the same with an Apache server.

Edit /etc/one/econe.conf (or $ONE_LOCATION/etc/econe.conf in a self-contained installation):

# OpenNebula sever contact information
ONE_XMLRPC=http://localhost:2633/RPC2

# Host and port where OCA server will run
SERVER=localhost
PORT=4567

#SSL Proxy
SSL_SERVER=<hostname.domain>:<the port you run the proxy on>

Cofigure a redirect in /etc/httpd/conf/httpd.conf:

<VirtualHost *:80>
  ServerName <hostname>:80
  ServerAdmin youremail@domain.com

  RedirectMatch  ^/$ https://<yourhostname>:<yourproxyport>

</VirtualHost>

Edit /etc/httpd/conf.d/ssl.conf:

<VirtualHost _default_:8443>

#put the SSL options that you need/want
#and the following did the trick for me

ProxyPreserveHost on
ProxyPass / http://localhost:4567
ProxyPassReverse / http://localhost:4567

</VirtualHost>