Consider the following usecases:
1) There are @RolesAllowed annotations on multiple methods(set X). Some methods (set Y) do not have @RolesAllowed, @PermitAll, @DenyAll annotations. For these methods in set Y, unchecked permissions need to be created for the roles for the ejb3 app.
2) There is a @DeclareRoles annotation at the class level. Methods may define annotations (set x) as in usecase 1. For the methods with missing security annotations, create unchecked permissions.