Is there a way to control access to an entire Service Portal by some qualifier (role, user criteria)?
There is no way to control the access to portal based on some qualifier in OOB instances. The user will have to include the criteria page by page. Service Portal is designed so that end users can use the application and overcome the hurdles of the native UI and create records without having ServiceNow knowledge. We have created FTASK39243 to let the Service Portal development team know about the requirement. The user can follow the status of the enhancement request to see more updates on the same.
All available versions