Aruba allows you to apply policies to the users using user-role , each user-role has ACLs define.
If you do show rights it would allow to see all your user-roles but if you want to see what role a certain user is getting then you can do a show user-table | include <mac address> or <ip-address> and then this command would allow you to see what's the user-role a particular user is tie too.
Users
-----
IP MAC Name Role Age(d:h:m) Auth AP name
10.10.30.209 00:11:22:33:44:55 testuser@gmail.com GUEST-ROLE 00:01:23 Web AP-TEST
And you can get the specifics of how that user-role is configured by using the show rights GUEST-ROLE