The requirement is to allow a maximum of 100 req/s on a single API. 

We tried to set throttling to 100 req/s on an API, with the assertion configured as follows:

(throttling_value = 100)

After the third request sent by the application within the same second, it immediately gets “429 – Too Many Requests.”

Why is this happening?

11.1

The only option is to use the "Spread limit over X sec window" this give some room to allow request which arrive with the  1/100 second between requests

https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-gateway/11-2/policy-assertions/assertion-palette/service-availability-assertions/apply-rate-limit-assertion.html

Clear the check box to disallow bursts. In this scenario, the Gateway only accepts requests arriving no sooner than 

 of a second. For example, if the 

 is 100, at least 1/100 second must have elapsed between requests