403 Access Denied when calling SAP API from Ignition

Syed_Najam_ul_arfeen · March 5, 2026, 4:02am

I am trying to call a SAP API from Ignition. The API works correctly in Postman and browser, but when I call it from Ignition I am getting 403 Access Denied (SAP ICM error page).

The same request works in Postman with Basic Auth, but Ignition returns 403.

Thanks.

Bushmatic · March 5, 2026, 9:36am

I believe Postman automatically base64 encodes your credentials. Try deleting lines 4 through 6 in your Ignition code and replace with this:

import base64

credentials = "your_username:your_password"
encoded = base64.b64encode(credentials.encode("utf-8")).decode("utf-8")

headers = {
 "Authorization": "Basic " + encoded,
 "Accept": "application/json"
}

If that doesn’t work, make sure the Ignition gateway’s IP is allowed in SAP’s icm/HTTP/auth or ICM allow rules.

Syed_Najam_ul_arfeen · March 6, 2026, 3:17am

Thank you @Bushmatic for your response. I tried the approach you suggested, but the issue still persists. I think I should now loop in the SAP team regarding the ICM related query. Furthermore, I have attached a snapshot after performing the Base64 encoding.

Kevin.Herron · March 6, 2026, 3:26am

system.net.httpClient handles the basic auth header and encoding when you specify the username and password, you don't need to do it yourself.

Syed_Najam_ul_arfeen · March 6, 2026, 3:50am

Thanks for the clarification.

I understand that system.net.httpClient() handles the Basic Auth automatically. However, I have already tried passing the username/password directly as well as manually replicating the headers from Postman, but I am still getting HTTP 403.

Since the request works in Postman, could you please suggest what else might be missing in the Ignition request?

Kevin.Herron · March 6, 2026, 3:56am

Share your postman config, or better compare a Wireshark capture between the two.

Syed_Najam_ul_arfeen · March 6, 2026, 6:06am

Thank you for the suggestion about comparing the requests using Wireshark. That hint helped a lot. After capturing and inspecting the traffic, I noticed that Ignition was sending the request with a different HTTP protocol behavior compared to Postman. I then explicitly set the HTTP version to HTTP_1.1 in the system function and after doing that the issue was resolved and the API started responding correctly.

Appreciate the guidance!

Script:

Wireshark Postman response:

Wireshark Ignition response: