I'm really loving creating VFP backend Web apllications using wwipstuff and the like, but now I need to impliment a more secure site.

I'm using IIS5 on Win2KServer. I have two questions (please excuse the basic nature of these questions):

1) Do I need to install a component into IIS which is not installed by default?

2) I am using password access at the welcome screen. After that, do I simply use the same browsing techniques, except use HTTPS in the address and in the web page header?

Much thanks in advance for the hand-holding.