Error occurred while executing Deleting Identity Providers

Question

Error occurred while executing Deleting Identity Providers

Aryan Saxena 1

I would like to delete all the identity providers of the tenant Emanastra.onmicrosoft.com, but when I try to do this through Powershell I receive the message: Error occurred while executing DeleteIdentityProvider Code: AADB2C90063 Message: There is a problem with the service. I was wondering if there is anything I could do to get past this or if you could delete the identity providers remotely from your end. When I click on All Identity providers in my Azure portal, it displays loading and never seems to load. I then tried to open an incognito window to see if it was a problem with the cache, but it still displayed the same loading message in configured identity providers. Please can you have a look at the identity providers of this tenant from your end as this problem has been bothering me for some time now. I have sufficient privilleges and I ran the command Get-AzureADMSIdentityProvider and Remove-AzureADMSIdentityProvider -Id LinkedIn-OAUTH to try and delete them. This tenant is not a b2c tenant. I tried contacting azure support and they said that this was an issue from the back end (after trying to verify the Logs), recommending me to escalate this to an internal engineering team or specialized engineer.

Graham Moor 81 Reputation points

2022-10-01T20:15:56.807+00:00

Suspect that Microsoft are suggesting that this needs to be looked at by somebody from your internal organisation, rather than Microsoft. Do you have some formal contract with Microsoft, or even a Cloud Services Provider?
Aryan Saxena 1 Reputation point

2022-10-01T20:19:39.367+00:00

After contacting Azure support, they said that this was an issue from the back end, recommending me to escalate this to an internal engineering team or specialized engineer from Microsoft to look at.
Graham Moor 81 Reputation points

2022-10-01T20:29:28.397+00:00

Yeah, this isn't that - it's essentially a community board. Think you will need to pay for a support contract for that. Not sure anybody here will have the ability to do that to your tenant.
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-03T17:38:23.233+00:00
@Aryan Saxena
Thank you for your detailed post!

Error Message:
AADB2C90063 Message: There is a problem with the service.

CorrelationId "128a86a4-a435-4018-8dd0-b44427bbc594" Date Time 2022-10-01T17:19:35

From your error message and screenshot, I found the request summary using your Correlation Id which showed a response code of 500, but I wasn't able to reproduce your issue.

Since you're not able to manually remove the Identity Provider from the Azure Portal due to the consistent loading, and you mentioned your user having sufficient privileges, can you share a screenshot of your logged in user's permissions from the Azure AD Overview page?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Aryan Saxena 1 Reputation point

2022-10-03T18:24:51.757+00:00

@JamesTran-MSFT

I am a global administrator of my organisation, but when I log into the Azure portal and go into users, it displays Insufficient privileges to complete the operation. I don't know why I am getting this message even though I am a Global Admin. Could this be the reason why I am unable to delete the identity providers from powershell?
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-03T23:40:54.103+00:00

@Aryan Saxena
Thank you for the quick follow up on this!

Since you can't view the Overview page of your Azure AD tenant due to insufficient privileges, this could definitely be the issue. Additionally, from your second screenshot is does show your user having the Global Admin role Active.

For testing purposes, can you create a new user in Azure AD, assign them Global Admin permissions, and log in with that user to see if they are having the same issues?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Aryan Saxena 1 Reputation point

2022-10-04T17:56:10.69+00:00

@JamesTran-MSFT

I tried following what you instructed, but after I created a new global admin user, it is still displaying the same message of insufficient privileges. I am truly stuck on what to do as I still can't get past this issue. Is it possible that an engineer from Microsoft might be able to promote this user to a higher privilleged role, that can access all the information of this tenant?
Aryan Saxena 1 Reputation point

2022-10-05T21:15:30.963+00:00

@JamesTran-MSFT

Can you delete the identity providers from the backend.
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-06T17:25:15.55+00:00

@Aryan Saxena
Thank you for following up on this!

I can't delete the Identity Providers from the backend. However, from your issue and previous screenshots, I'd recommend creating a support request so our engineering team can take a closer look into your issue and environment.

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Graham Moor 81 Reputation points

2022-10-13T19:27:56.967+00:00

Do you have a cloud services provider or other body who manages this tenant (or is it non-profit donation)? What you have outlined above suggests that another organisation manages the tenant (a common scenario).
Henry Vu 20 Reputation points

2024-11-18T07:54:25.29+00:00

@Graham Moor
Do you have any updates on this issue? I have encountered the same problem and would appreciate any assistance.

Thank you.

1 answer

Your answer

Graham Moor 81 Reputation points

2022-10-01T20:15:56.807+00:00

Suspect that Microsoft are suggesting that this needs to be looked at by somebody from your internal organisation, rather than Microsoft. Do you have some formal contract with Microsoft, or even a Cloud Services Provider?
Aryan Saxena 1 Reputation point

2022-10-01T20:19:39.367+00:00

After contacting Azure support, they said that this was an issue from the back end, recommending me to escalate this to an internal engineering team or specialized engineer from Microsoft to look at.
Graham Moor 81 Reputation points

2022-10-01T20:29:28.397+00:00

Yeah, this isn't that - it's essentially a community board. Think you will need to pay for a support contract for that. Not sure anybody here will have the ability to do that to your tenant.
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-03T17:38:23.233+00:00

@Aryan Saxena
Thank you for your detailed post!

Error Message:
AADB2C90063 Message: There is a problem with the service.

CorrelationId "128a86a4-a435-4018-8dd0-b44427bbc594" Date Time 2022-10-01T17:19:35

From your error message and screenshot, I found the request summary using your Correlation Id which showed a response code of 500, but I wasn't able to reproduce your issue.

Since you're not able to manually remove the Identity Provider from the Azure Portal due to the consistent loading, and you mentioned your user having sufficient privileges, can you share a screenshot of your logged in user's permissions from the Azure AD Overview page?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Aryan Saxena 1 Reputation point

2022-10-03T18:24:51.757+00:00

@JamesTran-MSFT

I am a global administrator of my organisation, but when I log into the Azure portal and go into users, it displays Insufficient privileges to complete the operation. I don't know why I am getting this message even though I am a Global Admin. Could this be the reason why I am unable to delete the identity providers from powershell?
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-03T23:40:54.103+00:00

@Aryan Saxena
Thank you for the quick follow up on this!

Since you can't view the Overview page of your Azure AD tenant due to insufficient privileges, this could definitely be the issue. Additionally, from your second screenshot is does show your user having the Global Admin role Active.

For testing purposes, can you create a new user in Azure AD, assign them Global Admin permissions, and log in with that user to see if they are having the same issues?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Aryan Saxena 1 Reputation point

2022-10-04T17:56:10.69+00:00

@JamesTran-MSFT

I tried following what you instructed, but after I created a new global admin user, it is still displaying the same message of insufficient privileges. I am truly stuck on what to do as I still can't get past this issue. Is it possible that an engineer from Microsoft might be able to promote this user to a higher privilleged role, that can access all the information of this tenant?
Aryan Saxena 1 Reputation point

2022-10-05T21:15:30.963+00:00

@JamesTran-MSFT

Can you delete the identity providers from the backend.
JamesTran-MSFT 37,221 Reputation points Microsoft Employee Moderator

2022-10-06T17:25:15.55+00:00

@Aryan Saxena
Thank you for following up on this!

I can't delete the Identity Providers from the backend. However, from your issue and previous screenshots, I'd recommend creating a support request so our engineering team can take a closer look into your issue and environment.

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Graham Moor 81 Reputation points

2022-10-13T19:27:56.967+00:00

Do you have a cloud services provider or other body who manages this tenant (or is it non-profit donation)? What you have outlined above suggests that another organisation manages the tenant (a common scenario).
Henry Vu 20 Reputation points

2024-11-18T07:54:25.29+00:00

@Graham Moor
Do you have any updates on this issue? I have encountered the same problem and would appreciate any assistance.

Thank you.

Answer 1

@Aryan Saxena
Thank you for your time and patience on this issue!

Error Message:
AADB2C90063 Message: There is a problem with the service

I was able to find some similar internal issues based off your error message and will share some troubleshooting steps and potential solutions below, to hopefully help resolve your issue.

Issue:
You're trying to execute Get-AzureADMSIdentityProvider and Remove-AzureADMSIdentityProvider -Id LinkedIn-OAUTH, but you're running into the above error message.

Troubleshooting:

Confirm the Tenant you're trying to access isn't a B2C tenant.
Try changing your initial/ primary domain within Azure Active Directory back to the original ...onmicrosoft.com and re-run the PowerShell cmdlet Get-AzureADMSIdentityProvider.
If Get-AzureADMSIdentityProvider still produces the same error message, try leveraging the Graph REST API samlOrWsFedExternalDomainFederation resource type.
If the above steps fail, you can try making your ....onmicrosoft.com domain your fallback domain within Microsoft 365 and re-running the commands above.

I hope this helps and I'll continue monitoring your support request in case anything changes or a solution is found for your issue.

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

----------

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

Share via

Error occurred while executing Deleting Identity Providers

1 answer

Your answer