I've seen many posts around the topic of SSL-enabling a Web Application and how many go through the process of Extending the Web Application to do so. While this does work, it is not necessary. Extending a Web Application should really be used when you want to offer a different authentication mechanism than the default one. To SSL-enable a Web Application all you need to do is (1) add an Alternate Access Mapping entry and (2) install the SSL certificate on the web site. To add a new AAM entry perform the following steps:
- From the Central Administration home page navigate through Operations --> Alternate Access Mappings (under the Global Configuration section)
- In the Alternate Access Mapping Collection dropdown (near upper-right) select Change Alternate Access Mapping Collection
- In the Select An Alternate Access Mapping Collection page select the relevant Web Application Name you want to create a new entry for
- In the Alternate Access Mappings page click the Edit Public URLs button near the upper-left.
- Enter the desired URL in one of the 4 Zones available then click the button
- Install the SSL certificate to the relevant IIS website
At this point you should be good to go!