I have been asked to check access authorizations for SAP Basis as part of a controls review. (not a SAP expert)
Can a user successfully perform a task if objects required are assigned under different roles. for instance, they have been assigned transaction code SE11 under role A, while the object S_DEVELOP with ACTVT 01, 02, etc selected is under role B, but they have both roles.
Does it have to be a all under the same role to be successfully run or as long the combination of roles can yield the same result? What are the implications?