And surprisingly the result doesn't change when i provide nanu/nanunanu as the credentials.
When is this authentication happening? Before even contacting the SessionBean is my call. Probably while trying to lookUp() it goes to my SessionBean's metadata and checks that it is secured and never lets the client go ahead.
This is now forcing me to download glassfish and move ahead.