read only visibility of Aspect categories based on user role/name.
Consider the requirement: User Operator1 should be able to see only Graphic displays, graphic elements, faceplates, faceplate elements and function diagram in read only mode. rest all aspects of other categories should not able to open (red cross mark).
Is there any way to configure security definition for aspect categories?
you can define a Filter in your Workplace,maybe it's enough for you:
In User Structure, your user has an aspect called Workplace Profile Values, and the Plant Explorer Settings you can change to Local and select a Filter, where you can use a predefined or create one yourself, which is possible in the Workplace Structure, Web System Workplace, create an "Aspect Category Filter" aspect.
Remove the "Operate" privilege from operator1 by taking them out of the operator group. They should only be members of the "Guest" group. Use the System Admin wizard to do this.
Setting filters will only "hide" aspects from operator1, it will not prevent them from actually operating the plant if they manage to open a graphic, faceplate etc.