Hi Tobias,
I tried with only one entry for info.icr - HTTPS, didn't have the LB=1.
I just added stack to urlinfo just now along with LB=1 and didn't make any difference.
I had built SAPSSLC.pse on the dmz side from an export of SAPSSLS.pse on the internal side but no where in my current profile am I referencing that
In another version without these 3 files I have the following parameters
wdisp/ssl_encrypt = 1
wdisp/ssl_auth = 2
wdisp/ssl_cred = $(DIR_INSTANCE)\sec\SAPSSLC.pse
This is the error I have been getting
ERROR => no valid destination server available for '!J2EE' rc=13 {00000005} [http_route.c 3412]
Reviewing that error, I found a link of talking about creating logon groups and url mapping on the backend java system and defining the following in external webdisp profile
wdisp/j2ee/server_info_location
wdisp/j2ee/url_map_location
Yes I am using X509 certificates. I don't know about end to end...for the reasons you mentioned. I need to set up url filtering and also authentication....