You're on the right track. Try this:

Create a Location within your vhost definition in httpd.conf:

<Location /test/>
AuthName "restricted stuff"
AuthType Basic
AuthUserFile /var/www/test/.test
require valid-user
</Location>

Create the password file:
/usr/bin/htpasswd -c /var/www/test/.test <user-name>

Hint: don't put the auth file in your DocumentRoot path.
--
Phil Mattison
Ohmikron Corp.
480-722-9595
602-820-9452 Mobile