I have set up permissions for tenant specific users as follows:
Path = / with restrictions = */tenant
This structure has worked to provide tenant specific access in sites and assets, however, this format does not restrict the experience fragments and templates to the same tenant specificity. To troubleshoot, I've attempted to deny jcr:read to path = / with restrictions = */content/experience-fragments/* which does not work either.
I believe the URL for experience fragments including "/aem" is the problem: