Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Error code: interaction_required
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 10%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKV%3C/text%3E%3C/svg%3E)
Kenneth van Wyk
0
Reputation points
Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle Trace ID: 9c1f2b5a-229e-4386-bda1-8b53118f0d00 Correlation ID: 019cf295-748e-7f5f-81d5-40d71ec3eaaf Timestamp: 2026-03-15 17:40:07Z
Microsoft Security | Microsoft Entra | Microsoft Entra ID
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 22%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
Thanmayi Godithi 10,195 Reputation points Microsoft External Staff Moderator2026-03-16T10:04:55.1233333+00:00 Hello @Kenneth van Wyk ,
The error message you encountered indicates that your tenant has been inactive for over 200 days past the billing cycle, triggering Microsoft’s effort to remove inactive tenants. When a tenant remains inactive for this period, the OMS commerce system imposes a login block (AADSTS5000225). Twenty days after the login block is applied, the tenant is permanently deleted.
Tenant inaccessible due to inactivity
If you plan to unblock your inactive tenant, it’s essential that it has been blocked for less than 20 days. After the 20-day period, the tenant is permanently deleted and cannot be recovered.
If it has been less than 20 days since the block, please provide the details requested over private message.
Note: If it's a test tenant, please re-create a new tenant for testing purposes.
Quickstart: Create a new tenant in Microsoft Entra ID
Do let me know if you have any queries, we are happy to assist you further.
Sign in to comment
1 answer
Sort by: Most helpful
-
AI answer
2026-03-15T18:20:35.4666667+00:00 The error
interaction_required: AADSTS5000225: This tenant has been blocked due to inactivitymeans the Microsoft Entra tenant is in an inaccessible state due to inactivity and sign-ins are being blocked.Key points from the error and behavior:
-
interaction_requiredis a server-originated code indicating that user interaction is required to complete the request, but in this case the underlying cause is tenant blocking. -
AADSTS5000225specifically indicates the tenant has been blocked due to inactivity. - When a tenant is blocked for inactivity, sign-in to Azure, Azure DevOps, and other dependent services fails with this error.
Tenant lifecycle and timing:
- When a tenant becomes inactive, Microsoft can block it to reduce unnecessary costs.
- Administrators can request reactivation within 20 days of the tenant entering the inactive/blocked state.
- If the tenant remains inaccessible for more than 20 days, it is deleted and cannot be recovered.
Actions depend on the role and goal:
- If the goal is to reactivate and keep using the tenant
- A tenant administrator must contact Microsoft support within the 20‑day window after the tenant was blocked.
- Use the documented global support phone numbers to open a support case and request tenant reactivation.
- Do not submit multiple assistance requests for the same issue; wait for the decision on the existing case.
- If the tenant is not needed anymore
- Do nothing; after 20 days in the inaccessible state, the tenant is automatically deleted and is not recoverable.
- Review Microsoft’s data protection policies to understand how data is handled after deletion.
- For application owners/developers hitting this error
- Minimize authentication requests to this blocked tenant until it is reactivated.
- Do not open multiple support requests; wait for the outcome of the existing case.
- Review the same data protection policies if the tenant will not be reactivated.
If the tenant has already been blocked for more than 20 days, the only option is to work with or create a different tenant, because the original one will be (or has been) deleted and cannot be restored.
References:
- Tenant inaccessible due to inactivity
- InteractionRequiredAuthErrorCodes module
- MsalError.InteractionRequired Field
- Microsoft Entra authentication and authorization error codes
- Troubleshoot connections to Microsoft Entra joined VMs
- Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity - Microsoft Q&A
- 7 Day Old Azure Account: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Error message: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Personal Microsoft account cannot be closed due to organization link (Error AADSTS5000225) - Microsoft Q&A
- Severity A Situation - Locked out of global admin account (MFA) - business down - Microsoft Q&A
- SharePoint Correlation ID in error messages: what it is and how to use it
AI-generated content may be incorrect. Read our transparency notes for more information. -