This does return results, but the events return one index each rather than 2 indexes for each event.

So what I'm looking for is an event to have both index=main and index=web-access as the same event. Both indexes will have the same JSESSIONID

Did you try my entire answer ( index=main OR index=web-access | stats values(*) AS * BY JSESSIONID )? It does exactly what you are saying that you need!

Can you update your question with an example of each event, and perhaps an example of what you want the final table to look like?

The user agent string is not an extracted field.. Also I'm not sure how this could work if we're using and AND statement to join the indexes when the indexoutofboundsexception is only present in the index=main.. Wouldn't we always get 'No Results Found' if the value is in one index and we use an AND to join 2 indexes?

Silly me, I missed the AND in your initial search. Assuming the JSESSIONID is present in every event you are interested in, try something more like this.

(index=main OR index=web-access) AND JSESSIONID=* | stats values(*) by JSESSIONID

Using index=x AND index=y will actually return no events. Unless you have events with more than one index field, which I'm not sure is possible? (Not 100% certain there but I wouldn't think it is). Its not actually joining the indices, but telling splunk to give you every event where the index field is BOTH main and web-access. Instead you want to get splunk to give you all the events from the main and web-access indices that have a value for JSESSIONID, then aggregate all the field values for those events based on their JSESSIONID.