How to hide backend from portal users?

VincenzoN · ‎03-21-2025

Hi everyone!

I'm writing this post because I need help with setting up an instance.

Currently, I've built a CSM portal. The instance mainly has two types of persona:

agents (who work on tickets in the backend)
customers (who use the CSM portal)

The CSM portal is accessed with a link like this: https://instance-name.service-now.com/csm

However, if customers remove the "/csm", they can see the home page (the one that agents can usually see at https://instance-name.service-now.com/now/nav/ui) of the backend, even if they can't interact with it and can't see any sensitive data.

I want to make sure that customers can't access the backend home page at all.

I thought about using the solution described at this link: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0869746

However, a colleague told me that in his opinion there is a way to avoid using redirects.

I'm thinking of using ACLs, but I'm not sure.

Do you have any suggestions?

VincenzoN · ‎07-11-2025

In the end, we chose to use role-based redirects as a solution.

View solution in original post

Dr Atul G- LNG · ‎03-22-2025

Hi @VincenzoN

It is not possible but have look here

https://www.servicenow.com/community/itsm-forum/is-it-possible-to-restrict-end-users-from-accessing-...

https://www.servicenow.com/community/developer-forum/end-user-with-no-role-navigation-to-native-ui/t...

*************************************************************************************************************
Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/dratulgrover [ Connect for 1-1 Session]

****************************************************************************************************************

Imran Makandar · ‎07-11-2025

@VincenzoN I believe below change in script include "SPEntryPage" may work for you.

Could you please try in your dev/test environment?

getDefaultPortal: function() {

var gr = new GlideRecord("sp_portal");

gr.addQuery("default", true);

gr.query();

if (gr.next())

return "/" + gr.getValue("url_suffix") + "/";

return "/csm/"; --- e.g. replace /esc/ with /csm/

},

VincenzoN · ‎07-11-2025

In the end, we chose to use role-based redirects as a solution.