diff --git a/src/main/java/org/opensearch/security/auth/BackendRegistry.java b/src/main/java/org/opensearch/security/auth/BackendRegistry.java
index a7c52d971e..590bb60414 100644
--- a/src/main/java/org/opensearch/security/auth/BackendRegistry.java
+++ b/src/main/java/org/opensearch/security/auth/BackendRegistry.java
@@ -407,7 +407,7 @@ public boolean authenticate(final SecurityRequestChannel request) {
             if (authCredentials == null
                 && anonymousAuthEnabled
                 && isRequestForAnonymousLogin(request.params())
-                && checkIfRequestContainsBasicAuthHeader(request.getHeaders())) {
+                && !checkIfRequestContainsBasicAuthHeader(request.getHeaders())) {
                 final String tenant = resolveTenantFrom(request);
                 User anonymousUser = new User(User.ANONYMOUS.getName(), new HashSet<String>(User.ANONYMOUS.getRoles()), null);
                 anonymousUser.setRequestedTenant(tenant);