Hi sharkkae,
I know this might sound obvious, but have you reviewed the documentation for the Require Windows Integrated Authentication Credentials assertion? There are many little notes that can be helpful in that documentation for this use-case with that particular assertion. One of those many notes may apply to your environment. There are a few items to note on there, but the ones I think may be the most applicable to you is noted in the big "Note" section in the middle of the page, which states the following verbatim:
Notes: (1) The policy fragment above does not support delegated credentials use case. It is intended to support authentication of the user credentials using available authentication assertions only. (2) Before using the Require Windows Integrated Authentication Credentials assertion, ensure the procedure under Configure the Gateway for Windows Domain Login has been performed.
Please review the documentation on that assertion, ensure that all the prerequisites are successfully completed, and then update this thread with the current status and preferably snippets of logs or audits showing any errors when running a test against the service using that assertion.
Thank you.
Sincerely,
Dustin Dauncey
Sr Support Engineer, Global Customer Success
Email: Dustin.Dauncey@ca.com
Phone: +1 800 225 5224 ,48385
Phone if outside North America - https://tinyurl.com/CAContactSupport
CA API Management Community: https://tinyurl.com/CAAPIMCommunity