Share via

Authentication

salman musa 20 Reputation points
2023-06-14T16:14:14.01+00:00

I was having an authentication problem while trying to access the cloud shell. The notification keeps throwing the error in the image. It seems like. Appreciate any help. And earlier it displayed: Request Id: 8ff8e5fc-30d6-4db3-bd6d-b188ded98600

Correlation Id: f23c0f2c-75c1-484f-8889-0fab1453c58e

Timestamp: 2023-06-14T11:13:24Z

Message: AADSTS50020: User account '******@hotmail.com' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application 'b677c290-cf4b-4a8e-a60e-91ba650a4abe'(AzurePortal Console App) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Authenticator
0 comments

Answer accepted by question author

Shweta Mathur 30,456 Reputation points Microsoft Employee Moderator
2023-06-15T03:41:00.3333333+00:00

@salman musa

Hi @salman musa ,

Thanks for reaching out.

I understand you are trying to access Azure Active Directory and facing issues.
This is due to you sign into Microsoft services tenant as a standard user with restricted access.

This error usually occurs when you sign into Azure Portal using your personal account which is not added as an external/guest user to an Azure AD tenant.

You can ask the global administrator to invite you as a guest user as mentioned here: https://learn.microsoft.com/en-us/azure/active-directory/external-identities/add-users-administrator#add-guest-users-to-the-directory. When you accept the invite sent to you via email and added to tenant, then you can also create your own tenant navigating to https://portal.azure.com/#create/Microsoft.AzureActiveDirectory.

Alternatively, if you want to perform administrative actions, you must have administrative access to the tenant, for which you need to create your own tenant rather than using the Microsoft Services tenant.
When you create a new tenant, you by default become the Global Administrator of the new tenant and have full access to all the options in that tenant.
To create a new tenant, open in-private/incognito browser window, access https://azure.microsoft.com/en-us/free/ to create a free Azure account.

Once the new account is created, you should be able to see and switch to the new tenant by clicking on the settings icon as highlighted below:

222336-207348-image.png

Hope this will help.

Thanks,

Shweta

Please remember to "Accept Answer" if answer helped you.

Was this answer helpful?

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.