I feel like there could probably be a better name for it, but I became lazy.
SSL can be disabled through the "apache" datasource in the ApacheSSL template that is created under /Devices/Server, but it is on by default. Also created are two zProperties: zApacheUsername and zApachePassword. If you don't set both of those values and Apache requires authentication, then an exception will be raised which should show up in any events or logs. Similarly, if Apache requests non-basic authentication, it will raise an exception.
I'm positive there are pieces of the pack that can be improved upon, but hopefully this can help you out for now.