John, If you are wanting to use your own in-house CA for self signing, then check out the following Q articles from MS:
For setting up the CA, obtaining the certificate, and installation: http://support.microsoft.com/support/kb/articles/q290/6/25.asp?id=290625&SD= MSKB How to force SSL and have the URL automatically redirected from HTTP:// to HTTPS://: http://support.microsoft.com/support/kb/articles/Q279/6/81.ASP?LN=EN-US&SD=g n&FR=0&qry=ssl%20&rnk=26&src=DHCS_MSPSS_gn_SRCH&SPR=EXCH2K How to use IIS Lockdown and URLScan to secure IIS while accommodating OWA: http://support.microsoft.com/support/kb/articles/Q309/5/08.asp It took me a long time to track down this information, but now that I have the leg work done and out of the way, hopefully this information will help the list on setting up a more secure online environment! :) BTW, I have used these techniques on two separate servers in production environments with 100% success, so lots of luck to you all out there! Let me know if this solves your problem you are trying to solve... Jason Borror, MCSE Network Engineer Digitech Services, Inc. List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm