You can also go to the AOT and look up in the table SecurityRolePermissionOverride and see what permissions are overridden.
One last note, you don't want to override too many permissions as it'll slow down your system performance.
Updated on 2/29/2012
Today had two discoveries on AX 2012 security settings.
- Unlike AX 2009, any change from the Security Role/Privileges form (e.g. adding a new role, adding/removing a duty from a role) auto triggers a change on the AOT under the Security section! If you're working from a usr layer (as a regular functional consultant would do), the changes will be on the USR layer!! I learned this in a hard way as I found all my security settings gone after a recent code deployment. So, if you don't want to keep redo your security settings in AX 2012, log onto the CUS layer and do the configuration, or merge the code after you're done on the USR layer.
- Another way to duplicate an existing role is to go to AOT>Security>Roles and duplicate the role. Then all duties and permissions will get copied to the new role. Much better.