If a user is a member of two different security groups, what can they access?

When a user is a member of two different security groups in Workday, they gain access to all policies from both groups. This inclusive access is designed to ensure that users can utilize the full range of permissions granted by their various group memberships, which may encompass different roles, data, and functionalities.

Security groups in Workday operate under an additive model, meaning that when a user is part of multiple groups, they inherit the combined permissions of all those groups. This functionality enables organizations to effectively manage permissions, allowing flexibility in user roles without the need for redundant setup or restrictive barriers. By accessing all policies from both security groups, users are empowered to perform tasks and access information more efficiently within the Workday environment.

Other options represent misunderstandings of how permissions function. The idea that a user could only access policies from the group with the least permissions or the highest permissions reflects a misconception of additive permissioning in security group memberships. Moreover, the notion that a user would have no access at all contradicts the foundational principle of group membership providing certain levels of access.