Are you sure the authentication ends in the profile that you created?
Two suggestions to verify that:
1) Change the default role in the service to your RW admin profile. If it works then, there is an issue with the enforcement policy (does not match).
2) Change the 'Unmatched commands' to permitted.
Here is an example that should work, and the only difference that I see is the 'Unmatched commands' (and a timeout):