Would like to configure CA SAM to run using https.  Is there specific documentation that describes how to do this, with regards to a best practise for SAM

Release : 4.x

Component : CA SOFTWARE ASSET MANAGER

In order to configure SAM to run on https, one will need to configure the backend web server, usually IIS, to operate under SSL conditions. There is no specific instruction that SAM requires to operate with IIS as it is a setup handled at the web server level. However, there is a CA SAM based setting, under Admin->Configuration->System, in the Security box, there is a checkbox for "Force https", which you can set, which would force CA SAM to only accept traffic from HTTPS (ssl) based requests.

The following link is one such link that describes how to configure IIS to operate with SSL.

https://support.microsoft.com/en-us/help/324069/how-to-set-up-an-https-service-in-iis