I assume an user might be interested to manage axon server, see the connected instances and so on. Is there a way to prevent this same user to see events?
When you are using Axon Server EE, you can define roles for users in the admin console. One user may be admin user for the _admin context, to manage the configuration of the axon server cluster, but it may not have access to any of the other contexts, so he will not be able to query the data. To be able to query the data for a context the user needs to have one of the following roles for that context: READ, READ_EVENTS or USE_CONTEXT.