Access control
We can restrict access to selected users and groups to the views within an authoring portlet, the items managed by the authoring portlet, and to elements and pages displayed within a website.
How access and security levels are set
There are three levels of access controls for web content
Library Define access to the library as a whole. If granted, it provides an entry point to the library. A user needs at least contributor access to a library in order to have access to it on the Authoring Portlet. Item type per library Define the item type views and tasks a user can access within the authoring portlet for particular library. The permissions set for item types in a library do not automatically give you access to individual items. They only give you access to specific tasks and views within the authoring portlet. Item level Define actions a user can perform on an individual item. For example, a Manager to the Components type has access to the Purge and Unlock actions but, if that user does not also have Manager access to an individual component then the Purge and Unlock actions will not be enabled when that component is selected.
See also
Parent: Set up a site