“Request rejected due to lack of remote user” error in the Windchill MethodServer log for a query from Windchill Navigate

• Request rejected due to lack of remote user error in the Windchill MS log for a query from ThingWorx Navigate
• Connectors fail with 403 error code
• Example error in Windchill MethodServer log

TRACE [ajp-nio-127.0.0.1-8010-exec-8] wt.servlet.ServletRequestMonitor.request  - Status set to error code: 403 java.lang.Exception: Stack trace
 at wt.servlet.ServletRequestMonitor.traceSetResponseStatus(ServletRequestMonitor.java:2744)
 at wt.servlet.ServletRequestMonitor$BaseHttpResponseWrapper.sendError(ServletRequestMonitor.java:2695)
 at wt.servlet.HttpServletResponseWrapper.sendError(HttpServletResponseWrapper.java:102)
 at wt.servlet.HttpServletResponseWrapper.sendError(HttpServletResponseWrapper.java:102)
 at wt.servlet.CompressionFilter$GzippingResponse.sendError(CompressionFilter.java:577)
 at wt.servlet.AuthBridgeServlet.service(AuthBridgeServlet.java:73)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:623)
 at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:199)
….
DEBUG [ajp-nio-127.0.0.1-8010-exec-8] org.springframework.security.web.context.HttpSessionSecurityContextRepository  - The HttpSession is currently null, and the HttpSessionSecurityContextRepository is prohibited from creating an HttpSession (because the allowSessionCreation property is false) - SecurityContext thus not stored for next request
ERROR [ajp-nio-127.0.0.1-8010-exec-8] wt.servlet.AuthBridgeServlet  - Request rejected due to lack of remote user
WARN  [ajp-nio-127.0.0.1-8010-exec-8] wt.servlet.ServletRequestMonitor.request  - 2025-07-15 11:54:54.390 +0000, 11is1aodjd;md4g17ni;957961;1xt2e8;3519, -, 10.xxx.x.xx, /Windchill/oauth/servlet/WindchillAuthGW/wt.httpgw.HTTPServer/echo, -, GET, 403, 0.0037234, 0.0060089

• 3D View and Thumbnail are not displayed in Navigate even if Validate Connection is working fine.
• Query URL in ApplicationLog.log has 403 code

2025-07-15 11:54:57.454+0000 [L: ERROR] [O: c.t.u.m.MediaEntity] [I: ] [U: <user>] [S: ] [P: ] [T: https-jsse-nio-8443-exec-11] Response had unexpected status code 403 with content …
2025-07-15 11:54:57.455+0000 [L: ERROR] [O: c.t.w.MediaEntities] [I: ] [U: <user>] [S: ] [P: ] [T: https-jsse-nio-8443-exec-11] SSO validation request failed with status 403
2025-07-15 11:54:57.455+0000 [L: WARN] [O: c.t.w.BaseService] [I: ] [U: <user>] [S: ] [P: ] [T: https-jsse-nio-8443-exec-11] Transaction has been marked as a failure for request /Thingworx/MediaEntities/ptc-windchill-integration-connector-proxy/Services/ValidateSSOResource

or

[L: ERROR] [O: c.t.u.m.MediaEntity] [I: ] [U: <user>] [S: ] [P: ] [T: https-openssl-nio-8443-exec-4] Could not stream MediaEntity [ptc-windchill-integration-connector-proxy]: HTTP operation failed calling [https://<Windchill server>/Windchill/sslClientAuth/wt/clients/images/proe/xxx.gif?twxME_ClientFollowRedirect=true] with status [403 - 403]

• Query URL in ApplicationLog.log does not include a parameter wt.effectiveUid=<username>
• System is configured for PingFederate SSO or Windchill Authentication
• Authentication type in ptc-windchill-integration-connector-proxy is set to Basic