"errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160f

Question

Hello there Azure community,

    Realized an Azure account is connected to my hotmail email address/microsoft account when attempting to remove an expired credit card from the subscription section. The amount of things that seem to be configured within the azure portal (which i have no idea what any of them do) might finally explain why and how it is my ex has been accessing my messages for years now.

So basically just want to get rid, but due to the admin permissions being configured in such a way I was baffled with what azure is anyway, but it seems like im locked out of my own Azure account.

Below are just a few of the messages that keep popping up when attempting to change admin permissions so i can delete the azure account.

Any advice or help will be appreciated and pardon my ignorance in regards to what ive somehow gotten myself into here

"Request Id: 98a505c2-2f87-4888-9299-2d20885f2000

Correlation : b855e6f8-4ec3-469f-8af1-bd1a6afcaa89

Timestamp: 2025-02-02T16:32:26Z

Message: AADSTS50020: User account 'xxxxxxxxxx@xxxxxxxxxxxx' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160ff0fc6'(ADIbizaUX) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account."

"Experiencing authentication issues

The portal is having issues getting an authentication token. The experience rendered may be degraded.

Additional information from the call to get a token:

Extension: fx

Resource: jarvis

Details: The logged in user is not authorized to fetch tokens for extension 'fx' because the user account is not a member of tenant 'f8cdef31-a31e-4b4a-93e4-5f571e91255a'. Error details: invalid_grant: 50020 - [2025-01-21 15:31:04Z]: AADSTS50020: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application 'c44b4083-3bb0-49c1-b47d-974e53cbdf3c'(Azure Portal) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account. Trace ID: d6deecff-c635-433e-a402-43c637b34101 Correlation ID: a9991fa1-3a04-406e-89b2-a9a9f6078657 Timestamp: 2025-01-21 15:31:04Z - Correlation ID: a9991fa1-3a04-406e-89b2-a9a9f6078657 - Trace ID: d6deecff-c635-433e-a402-43c637b34101

See less"

{
  "sessionId": "a46befa90115461b90aeb37bd1c2c0e2",
  "errors": [
    {
      "errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160ff0fc6'(ADIbizaUX) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account. Trace ID: 83975f38-5fb0-41e1-a228-8f2cdc761d00 Correlation ID: 46e8ef59-540f-4ee2-a9e0-20a4e3cf2f98 Timestamp: 2025-02-02 16:47:06Z",
      "clientId": "74658136-14ec-4630-ad9b-26e160ff0fc6",
      "scopes": [
        "a57aca87-cbc0-4f3c-8b9e-dc095fdc8978/.default"
      ]
    }
  ]
}

Answer 1

Hello @Luke Poyner ,

Thank you for reaching out Microsoft Q&A.

I Understand you are getting AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160ff0fc6'(ADIbizaUX) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.

Whenever you sign in Azure portal using Microsoft Personal Account (Outlook, Hotmail...) you by default get connected to the Microsoft Services tenant (f8cdef31-a31e-4b4a-93e4-5f571e91255a). 

You can also confirm this by navigating to Azure Active Directory > Overview blade and you can see f8cdef31-a31e-4b4a-93e4-5f571e91255a as Tenant ID. 

In this default tenant, you do not have any directory associated with it which you can confirm by navigating to settings. 

As this is a standard tenant without any directory associated, you cannot perform actions such as creating new users, groups, enterprise applications, and so on. To perform administrative actions, you must have administrative access to the tenant. 

Solution: For this purpose, you need to create your own tenant rather than using the Microsoft Services (f8cdef31-a31e-4b4a-93e4-5f571e91255a) tenant. 

To create a new tenant, open in-private/incognito browser window (just to avoid SSO), access https://azure.microsoft.com/en-us/free/ to create a free Azure account. 

When you create a new tenant, you by default become the Global Administrator of the new tenant and have full access to all the options in that tenant. 

If you still want to access Entra portal using your personal Microsoft account only, you can invite that user as a guest user as mentioned here : https://learn.microsoft.com/en-us/azure/active-directory/external-identities/add-users-administrator#add-guest-users-to-the-directory and assign the Global Administrator role to proceed further with the account. 

Once you are added to an azure tenant and you accept the invite sent to you via email, you can use https://portal.azure.com/#create/Microsoft.AzureActiveDirectory URL to create your own tenant as well. 

Hope this will help. Please "Accept the answer" if the information helped you. This will help us and others in the community as well. 

Thanks & Regards

Goutam Pratti.