This document is missing the following step
"4. Authorize the user identifier BHIHSRV to the ANT.REPLICATIONMANAGER entity in the FACILITY class by issuing the following command:
PERMIT ANT.REPLICATIONMANAGER CLASS(FACILITY) ID(BHIHSRV) ACCESS(CONTROL) "
Which must be done whether going from non secure socket to a secure communication OR vise versa