diff --git a/Dockerfile b/Dockerfile
index 8fc7458..a0492de 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -14,8 +14,9 @@ LABEL Version=$version
 
 LABEL Build docker build --rm --tag $maintainer/$imagename .
 
+ADD ./container_files /opt
 # This SP will connect via the TCP listener
-RUN rm /opt/bin/httpd-shib-foreground
+RUN cp /opt/etc/httpd/conf.d/shib.conf /etc/httpd/conf.d/shib.conf && rm /opt/bin/httpd-shib-foreground
 
 EXPOSE 80 443
 CMD ["/usr/sbin/httpd"]
diff --git a/container_files/etc/httpd/conf.d/shib.conf b/container_files/etc/httpd/conf.d/shib.conf
new file mode 100644
index 0000000..12c28d3
--- /dev/null
+++ b/container_files/etc/httpd/conf.d/shib.conf
@@ -0,0 +1,48 @@
+# https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPApacheConfig
+
+# RPM installations on platforms with a conf.d directory will
+# result in this file being copied into that directory for you
+# and preserved across upgrades.
+
+# For non-RPM installs, you should copy the relevant contents of
+# this file to a configuration location you control.
+
+#
+# Load the Shibboleth module.
+#
+LoadModule mod_shib /usr/lib64/shibboleth/mod_shib_24.so
+
+#
+# Turn this on to support "require valid-user" rules from other
+# mod_authn_* modules, and use "require shib-session" for anonymous
+# session-based authorization in mod_shib.
+#
+ShibCompatValidUser Off
+
+#
+# Ensures handler will be accessible.
+#
+<Location /Shibboleth.sso>
+  AuthType None
+  Require all granted
+</Location>
+
+#
+# Used for example style sheet in error templates.
+#
+<IfModule mod_alias.c>
+  <Location /shibboleth-sp>
+    AuthType None
+    Require all granted
+  </Location>
+  Alias /shibboleth-sp/main.css /usr/share/shibboleth/main.css
+</IfModule>
+
+
+<Location /siteadmin>
+  AuthType shibboleth
+#  ShibRedirectToSSL 443
+  ShibUseEnvironment On
+  ShibUseHeaders On
+  require shibboleth
+</Location>
\ No newline at end of file