...
From the application selector side menu (F2 or button top left) choose the Settings application.
Go to Integration / Hawksearch where you’ll find the settings for the connector.
Make sure Use permission filtering is enabled.
From the application selector side menu (F2 or button top left) choose the Roles application.
Create a role called Unauthenticated Users.
From the application selector side menu (F2 or button top left) choose the Users application.
Edit the public user.
Go to their roles on the menu on the left and assign them the role you just created.
Create or use an existing Page Type to create two separate pages in the Pages application for you to index.
In the Pages application, click on one of the pages you just created then click on Properties / Security.
Add the new role to the list and make sure you check the Allow Read on the access rights.
Repeat the process, but for the second page and this time make sure you check the Deny Read on the access rights.
Re-index the index - Kentico: Indexing API Overview
Go to the live MVC application after setting up the widgets - Kentico: Working with widgets .
Perform a search.
If everything worked correctly, you should not see the page you denied permissions for.
...
When the index is created and Filter by Permissions is turned on in the Hawksearch configuration each document is sent with fields specifying users in which roles are permitted to view the document. As mentioned in the Search Workflow when a search request is made it contains the roles of the user making the request. Hawksearch then compares these roles with the permissions of each document and determines whether the user can view the document.