This situation relates to a browser front end to a product called ITOM.

When running product ITOM to review reports there are S047 abends which stop the product working with ACF2

Release : 16.0

Component : CA ACF2 for z/OS

The S047 abends occur because of racroute requests with STATUS=ACCESS

Sectraces showed RACROUTE REQUEST=AUTH,CLASS=XFACILIT,STATUS=ACCESS.
these were in a non APF AUTHORISED environment.
the entityx values were...
BJT.ITOM.VIEW.ARCH BJT.ITOM.VIEW.RPRT BJT.ITOM.VIEW.ARCH.DOWNLOAD
BJT.ITOM.VIEW.RPRT.DOWNLOAD BJT.ITOM.VIEW.ARCH.PRINT BJT.ITOM.VIEW.RPRT.PRINT
BJT.ITOM.ADM.FVF BJT.ITOM.ARPT BJT.ITOM.VIEW.ARCH BJT.ITOM.VIEW.RPRT
BJT.ITOM.VIEW.ARCH.DOWNLOAD BJT.ITOM.VIEW.RPRT.DOWNLOAD
BJT.ITOM.VIEW.ARCH.PRINT BJT.ITOM.VIEW.RPRT.PRINT BJT.ITOM.ADM.FVF
BJT.ITOM.ARPT BJT.ITOM.VIEW.ARCH BJT.ITOM.VIEW.RPRT
BJT.ITOM.VIEW.ARCH BJT.ITOM.VIEW.ARCH.DOWNLOAD BJT.ITOM.VIEW.RPRT
BJT.ITOM.VIEW.ARCH.DOWNLOAD BJT.ITOM.VIEW.RPRT.DOWNLOAD
BJT.ITOM.VIEW.ARCH.PRINT BJT.ITOM.VIEW.RPRT.PRINT BJT.ITOM.ADM.FVF
BJT.ITOM.ARPT BJT.ITOM.VIEW.RPRT.DOWNLOAD BJT.ITOM.VIEW.ARCH.PRINT
BJT.ITOM.VIEW.RPRT.PRINT BJT.ITOM.ADM.FVF BJT.ITOM.ARPT
BJT.ITOM.VIEW.ARCH BJT.ITOM.VIEW.RPRT BJT.ITOM.VIEW.ARCH.DOWNLOAD
BJT.ITOM.VIEW.RPRT.DOWNLOAD BJT.ITOM.VIEW.ARCH.PRINT BJT.ITOM.VIEW.RPRT.PRINT

A SAFDEF can be created with a masked entityx to cover all the resources as they all began with BJT.ITOM

ACF
SET CONTROL(GSO)
INSERT SAFDEF.HTTP ID(HTTP) NOAPFCHK MODE(GLOBAL)
RACROUTE(REQUEST=AUTH CLASS=XFACILIT STATUS=ACCESS ENTITYX=BJT.ITOM-)
F ACF2,REFRESH(SAFDEF)
END

This resolved the problem and now everything appears to be working successfully.