![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 7.000000000000001%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 22%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 19%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
The error AADSTS5000225 indicates that the Microsoft Entra tenant linked to the account has been blocked due to inactivity. Once a tenant is blocked, sign-in to Azure services (including Azure Data Factory) fails until the tenant is reactivated or is permanently deleted.
Use the following steps depending on tenant status and role:
- Determine if tenant can still be reactivated
- Tenants blocked due to inactivity can be reactivated only within 20 days of entering the inactive state.
- After 20 days in this blocked state, the tenant is deleted and cannot be recovered.
- If within 20 days and you are a tenant administrator
- A global admin/tenant admin must contact Microsoft to request reactivation.
- Use the published global support phone numbers: see the global support phone numbers link in the article.
- Do not open multiple support requests for the same tenant; wait for Microsoft’s decision on the existing case.
- If you do not plan to reactivate the tenant
- Do nothing; the tenant will be deleted after 20 days of being inaccessible due to inactivity and is not recoverable.
- Review Microsoft’s data protection policies if data retention or deletion is a concern.
- If sign-in to the Azure portal is failing generically
- Try signing in directly to the tenant using the tenant ID or tenant name in the URL, for example:
-
https://portal.azure.com/<TenantId> -
https://portal.azure.com/<yourTenantName>.onmicrosoft.com
-
- If the tenant is blocked, the same AADSTS5000225 error is expected.
- Try signing in directly to the tenant using the tenant ID or tenant name in the URL, for example:
- If the tenant is already deleted or blocked for more than 20 days
- The tenant cannot be restored.
- Create a new tenant and reconfigure Azure Data Factory and other resources as needed.
- If access to Azure is needed urgently but the original tenant cannot be recovered
- Sign in to https://entra.microsoft.com/.
- Go to Entra ID → Overview → Manage tenants and create a new tenant.
- Use the new tenant’s domain name (for example,
xxx.onmicrosoft.com) in the Azure portal URL:https://portal.azure.com/xxx.onmicrosoft.com. - From the new tenant, recreate required Azure Data Factory instances and other resources.
For any scenario where the tenant should remain active and is within the 20‑day window, the key action is for a global admin to contact Microsoft support and request tenant reactivation.
References:
- Tenant inaccessible due to inactivity
- Keep your Microsoft business billing account active
- 7 Day Old Azure Account: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Error message: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity - Microsoft Q&A