Counter Example Trace:
Specification of query: Can user41 REACH role10 ?

==> Step 1:
Target User: user0
CAN ASSIGN rule applied to user0: <role20,-role12,role1>
Administrative user to invoke the rule: user49
Role configuration of user0 before applying rule: No role
Role configuration of user0 after applying rule: role1

==> Step 2:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,-role12,role1>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: No role
Role configuration of user41 after applying rule: role1

==> Step 3:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,-role4,role6>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role1
Role configuration of user41 after applying rule: role1 role6

==> Step 4:
Target User: user0
CAN REVOKE rule applied to user0: <role20,role1>
Administrative user to invoke the rule: user49
Role configuration of user0 before applying rule: role1
Role configuration of user0 after applying rule: No role

==> Step 5:
Target User: user41
CAN REVOKE rule applied to user41: <role20,role1>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role1 role6
Role configuration of user41 after applying rule: role6

==> Step 6:
Target User: user0
CAN ASSIGN rule applied to user0: <role20,TRUE,role0>
Administrative user to invoke the rule: user49
Role configuration of user0 before applying rule: No role
Role configuration of user0 after applying rule: role0

==> Step 7:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,TRUE,role0>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6
Role configuration of user41 after applying rule: role6 role0

==> Step 8:
Target User: user0
CAN ASSIGN rule applied to user0: <role20,-role12,role1>
Administrative user to invoke the rule: user49
Role configuration of user0 before applying rule: role0
Role configuration of user0 after applying rule: role0 role1

==> Step 9:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,-role1,role2>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6 role0
Role configuration of user41 after applying rule: role6 role0 role2

==> Step 10:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,TRUE,role19>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6 role0 role2
Role configuration of user41 after applying rule: role6 role0 role2 role19

==> Step 11:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,role19&-role4,role9>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6 role0 role2 role19
Role configuration of user41 after applying rule: role6 role0 role2 role19 role9

==> Step 12:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,-role14,role17>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6 role0 role2 role19 role9
Role configuration of user41 after applying rule: role6 role0 role2 role19 role9 role17

==> Step 13:
Target User: user41
CAN ASSIGN rule applied to user41: <role20,role17&role9&role0,role10>
Administrative user to invoke the rule: user49
Role configuration of user41 before applying rule: role6 role0 role2 role19 role9 role17
Role configuration of user41 after applying rule: role6 role0 role2 role19 role9 role17 role10

user41 can REACH role10
role10 is REACHABLE