Something like:

rserver redirect HTTP-to-HTTPS
  webhost-redirection https://%h%p 301
  inservice

serverfarm redirect HTTP-to-HTTPS
  rserver HTTP-to-HTTPS
    inservice

class-map type http loadbalance match-any L7CLASS-REDIRECT-HTTP-to-HTTPS
   match http url .*/login.aspx

policy-map type loadbalance first-match L7POLICY-REDIRECT-HTTP-to-HTTPS
  class L7CLASS-REDIRECT-HTTP-to-HTTPS
    serverfarm HTTP-to-HTTPS

policy-map multi-match L3IngressPolicy

  class L4VIP-SOME-VIP-CLASS
    loadbalance vip inservice
    loadbalance policy L7POLICY-REDIRECT-HTTP-to-HTTPS
    loadbalance vip icmp-reply
    loadbalance vip advertise active

and then of course having a proper HTTPS policy corresponding with the redirect...

That's how we've got things running anyways...