For an enterprise application, you can roll up all the security roles that are defined in the application's modules. You can then combine and remove redundant or unnecessary security roles.
A security role is a logical grouping of principals. Access to operations (such as EJB methods) is controlled by granting access to a role. The Gather option rolls up all security roles defined in modules that are included in the application.
To gather security roles: