User sign on to CICS with a digital certificate receives a DRC 15 security violation, which is an invalid user type, and receives the following error message:  

DFHWB0360 03/01/2018 12:02:27 DFHM1T00 An attempt to establish security for userid CERTSITE has failed. Transaction CWBA cannot 
be started. SAF codes are (X'00000008',X'00000000'). ESM codes are (X'0000001C',X'00000000'). Host IP address: 
192.168.252.62. Client IP address: 10.138.36.108. TCPIPSERVICE: GNIPSRV2. 

Since the certificate is owned by CERTSITE, Top Secret is attempting to signon the CERTSITE acid.

CERTSITE is a special acid used to own personal/client certificates that are shared by multiple users.

CERTSITE cannot sign on to any facilities. A signon attempt will receive DRC 15 Invalid User Type.

The ownership of the digital certificate needs to be moved to the acid that will be using it to signon.