SSL with Windows Server 2003

Hello all - slowly working through finalizing my test environment of Openfire before deploying to our users. I am now at the point where Openfire successsfully connects/works when I am outside of our organization. I even have Openfire working on our Windows Mobile and Blackberry devices.

I am concerned about the security as everything is sent in Clear Text.

I am looking for some assistance on where to begin to utilize SSL to encrypt the connections or some other way to verify Username, PW and conversations are not passed in clear text.

Any pointers or info is GREATLY appreciated. Please remember that this is for a Windows OS. I have seen plenty of posts on other OS’ but nothing really for Windows.