The Service Trust Portal (STP) provides a variety of content about Microsoft security practices and includes independent third-party audit reports about Microsoft online services. You can also find out how our online services can help your business to be compliant with standards, laws, and regulations across industries including:
International Organization for Standardization (ISO)
Health Insurance Portability and Accountability Act of 1996 (HIPAA)
Federal Risk and Authorization Management Program (FedRAMP).
Who can access the STP, and how?
New customers, and customers evaluating Microsoft online services can access the STP. Use the following sign-up forms (also used for trial accounts) to get access:
Click for help completing the sign-up form.
Microsoft accounts – formerly "Live IDs" – are not supported to access the STP.
Microsoft Azure (Azure Active Directory accounts only )
See How to sign up for, purchase, upgrade or activate an Azure subscription for instructions. When you sign up for either a free trial, or a subscription, you must enable Azure Active Directory to support your access to the STP.
Existing customers can access the STP at http://aka.ms/STP with one of the following online subscriptions (also referred to as tenants):
Office 365 for business (active trial and paid subscriptions)
Dynamics CRM Online (active trial and paid subscriptions)
Microsoft Azure (Azure Active Directory accounts for trail or paid subscriptions only )
If you don’t have access to the STP, and you're the global admin for Office 365 for business, or for Azure AD, you can get set up right away. As the global admin for your organization, once you have access, you can onboard others to the portal too.
Note: To find out about different administrator roles in Office 365, see the article, Assigning admin roles in Office 365, and in Azure, see the article, Assigning administrator roles in Azure Active Directory (Azure AD). For Dynamics CRM Online, use your Office 365 global admin account.
Help completing sign-up
This section takes you through your Office 365 trial setup step-by-step.
If your company isn't an Office 365 or Microsoft Azure customer, you can still access STP documents and information by quickly setting up a free trial of Office 365:
Go to the sign up form and enter details for your company as shown in the following screen shot.
For your Your organization size, only include the number of people who will access STP documents. If you need more details about what to enter on this page, see the topic How to sign up for Office 365 - Admin Help. When you've entered your details, click Next to continue.
On the next page, Office 365 creates your user ID from your name and the company details you enter as shown in the following screen shot. Make a note of your ID and the password you create - you'll need these to access STP documents.
Click Next to continue.
On the final screen, enter a phone number so you can receive a verification code. Office 365 only uses your number to send you a verification code; your number won't be used for marketing or any other purpose.
When you receive it, enter the verification code as shown in the following screen shot.
Select Create my account. When Office 365 confirms you're ready to go, you can Access the Service Trust Portal.
Access the Service Trust Portal
To access the STP:
Go to http://aka.ms/STP.
To sign in:
If you're the global administrator for Office 365 or Azure AD, enter your admin credentials.
If you followed the instructions above to set up a free trial, enter the user ID and password that you just created.
When you sign in for the first time, select OK twice to continue. Selecting OK authorizes the STP for use by your organization, and enables access to your directory of users (stored in Azure AD). The STP requires access to Azure AD so you can add other STP users from your organization. After you sign in, you’ll start at the home page.
Choose your industry and regional settings
After you access the STP for the first time, the next step is to configure your industry and regional settings. You can change these settings at any time. Configuring these settings enables the STP to provide you with content that is most relevant to your organization. To configure your industry and regional settings:
After you sign into the STP, select Settings as shown in the following screen shot.
On the Settings page, select the down arrow next to REGION and check the appropriate regions for your organization.
Select the down arrow next to INDUSTRY and check the appropriate industries for your organization.
Once you have selected regions and industries, select Save.
On this screen, optionally you can also Add other administrators and users.
Review compliance and trust content
To review content, select an option from the menu:
Compliance Reports to view independent audits and assessments of Office 365, Azure, and Dynamics CRM Online.
Trust Documents to view information about how Microsoft operates Office 365, Azure, and Dynamics CRM Online.
The STP shows you reports and documents relevant to the industries and regions you selected. If you want to find a specific report, use the filters provided. For example, enter a full or partial document name in the SEARCH DOCUMENT NAME / DOCUMENT SUMMARY field and select Filter Reports. Select any document name in the Report Name (Compliance Reports) or Document Name (Trust Documents) field to download it to your computer.
Note: STP reports and documents are available to download for at least twelve months after publishing or until a new version of document becomes available.
Add other portal admins and portal users
If you are the only person in your organization who needs access to the STP, you can skip this step. Otherwise, you can add other administrators or users to the portal.
Any admins or users you want to add to the STP must already have Office 365 or Azure AD accounts. STP admins can change settings and view content on the site. STP users can only view content on the site.
To add a portal admin
On the Settings page, select Add user role. In the User Name field, enter the email address for the user you want to make a portal admin. Select the role Portal Admin and select Add User.
To add a portal user
On the Settings page, select Add user role. In the User Name field, enter the email address for the user you want to make a portal user. Select the role Portal User and select Add User.
Manage portal admins and portal users
To view who has access to the STP, or if you want to revoke access for a portal admin or portal user, sign into Azure AD.
Either sign into Azure AD using your global admin account and skip to step 3 in this procedure, or sign into Office 365 using your global admin account. Depending on your setup, you might need to choose Admin from the Office 365 app launcher at the top of the page, as shown in the following screen shot.
On the Admin menu, choose Azure AD as shown in the following screen shot.
Notes: Azure AD helps you manage users for your Office 365 subscription. Provided you're a global admin, you can sign into Azure AD to manage users.
You might need to sign in twice if you haven't signed into Azure AD before. Use the same name and password that you use for Office 365. After the sign-in process, it takes a few moments for Azure AD to complete your setup. Once setup completes, choose Start managing my service.
The Azure AD dashboard shows your Active Directory subscription (typically called Microsoft). Double-click on your Azure AD subscription as shown in the following screen shot.
On the next page, select APPLICATIONS as shown in the following screen shot.
The next page shows a list of applications that are connected to Azure AD. The list includes your Microsoft online subscriptions such as Office 365 Exchange Online and O365trustportal. O365trustportal is the application name Azure AD uses for the STP. Select O365trustportal as shown in the following screen shot.
On the next page, select USERS in the dashboard menu as show in the following screen shot.
The next page shows a list of Office 365 users and others with Azure AD accounts in your organization as shown in the following screen shot. For each user, ASSIGNED is set to Yes for users that have access to the STP.
To revoke a user's access to the STP, select the user, and then select REMOVE at the bottom of the screen, as shown in the following screen shot.
Note: You can't revoke access for the Office 365 or Azure global admin.
In the dialog box, confirm you want to revoke access for this user by checking the option Disable access to this app for the selected users. Select the checkmark to confirm as shown in the following screen shot. You can reactivate access for a user at any time.
Frequently Asked Questions
Get help with the STP.
Find help with consent to use the STP, warnings that might display, multiple domains and STP, and corrupted files.
1. Why do I have to provide consent for the STP to use Azure Active Directory?
The STP is an Azure application and it relies on Azure Active Directory for authentication. The STP needs read/write access to your organization's Azure Active Directory because it stores details about your Office 365 users and what they have access to. Azure Active Directory must be able to identify which users have STP access.
2. Why am I receiving a warning that says Microsoft hasn’t verified the trustworthiness of the STP application (O365trustportal)?
The STP is an Microsoft Azure application, and all applications built on Azure include Microsoft’s standard disclaimer. The STP was developed by Microsoft, and it is solely controlled and operated by Microsoft. For more information about the STP, see blogs.office.com including Announcing the Office 365 Service Trust Portal and Announcing the enhanced Office 365 SOC audit reports with new trust principles.
3. My organization uses multiple domains. How can I add STP users from different domains?
Currently, when you add users from any domain, you must be signed in as the global admin for that specific domain. For example, if you are signed in from “contoso.onmicrosoft.com” then you can add users from “contoso.onmicrosoft.com”. If you want to add users from a different domain (for example, “contoso.com”) then you must sign in as the global admin for “contoso.com.”
4. Why am I getting an error saying that documents from STP are corrupted?
Most STP documents are in PDF format. Use your web browser’s Save option to save these files to, and then open them up from, your local computer.
Get help with the STP and reports
Contact Office 365 for business support. We can help with questions about the STP, or errors you experience when you use the portal. You can also contact us with questions and feedback about STP compliance reports and trust resources.
If you see an error: “You do not have sufficient permissions to access this application!”, it’s because you are already signed into Office 365 (most likely via your corporate credentials). If you are not the global administrator for that instance of Office 365, you'll see an error instead. Your options are:
Ask the Office 365 global administrator to give you access to the STP. (Add other portal admins and portal users)
If you don't know how to contact your Office 365 global administrator and need access to the STP, use InPrivate browsing to Set up a free trial of Office 365. Then, continue to use InPrivate browsing to sign in to the STP.