Unable to shutdown CICS regions from  'F {jobName},CEMT P SHUT' from SDSF, getting message ACFAE904 Signon is required. 

Release : 16.0

Component : CA ACF2 for z/OS

CTS version is 5.4

The 'ACFAE904 ACF2 SIGN-ON IS REQUIRED' message will occur when issuing 'F {jobName},CEMT P SHUT' from SDSF under the following conditions.

• ACF2/CICS ACF2PARM OPTION CONSOLE=VALIDATE is set.
  Indicates whether system console transactions are validated.
  VALIDATE-Indicates that security controls are in effect for transactions being processed at the console. This is the default.
  IGNORE-Specifies that no protection is in effect for transactions being processed at the console.
  
  
• ACF2/CICS ACF2PARM SIGNON REQUIRE=YES is set.
  YES-Specifies that a user must sign-on before executing transactions.
  NO-Specifies that no sign-on check is made.
  
  
• ACF2/CICS ACF2PARM PROTLIST RESOURCE=TRANS,ENTRY=CEMT is set.
  If the CEMT transaction is on the PROTLIST, the CICS interface validates the access as if the resource was not on the SAFELIST.
  
  
• Console is not signed on before entering 'F {jobName},CEMT P SHUT' from the console(or SDSF LOG).

To address the ACFAE904 sites can review their CICS security requirements and either set OPTION CONSOLE=IGNORE or SIGNON REQUIRE=NO