After creating users and groups, you can assign them different levels of access to specific resources, roles, and policies. This access controls what actions they can perform on various pages, portlets, and applications.
via WebSphere Portal Family wiki: IBM WebSphere Portal 7 Product Documentation: Controlling access.