Create a CA on Windows 2003 Question

Hi, not sure where to begin. On an Intranet we have where users enter
personal information. I wanted this to be secure over SSL, port 443,
https. Can't I create a certificate for this under Windows 2003
without purchasing something from a third party?

Any links on this process are appreciated.

Thank you for any help.