Hi Jurjen,
So, you actually then modify the roles in each system, in TEST and in PROD?
Do you create separate roles with the separate S_RFCACL values for each of the systems? Or do you create one role, with separate authorisations for each system, which you then deactivate in TEST and PROD?
Thing is that the Governance, Risk and Compliance department in my company is against me updating roles directly in TEST and PROD.