If you mean to display objects that are made by the user you can use a security entity setting such as:
If you mean access to certain parts of the application then you configure user roles and specific module roles for access to parts in those modules only