Refer: http://crunchify.com/wordpress-how-to-force-specific-pages-to-be-secure-ssl-https/
That part is actually pretty easy. Just drop this in the wp-config.php. That’ll force the entire admin over SSL, which is what you want in most cases.
define('FORCE_SSL_ADMIN', true);