Import the certificate into IIS.
Modify the website bindings to use https and the certificate you imported.
The web.config file can also be modified so that it will only accept requests from a secure connection and sends the forms authentication cookie over a secure connection.
The 'requireSSL=true' needs to be added as an attribute to the 'forms' authentication element.
'requireSSL=' also needs to be set to 'true'