new account and domain problem?

Bit Ware 0 Reputation points
2024-03-13T07:05:53.7866667+00:00

I created new account on Outlook.com , im was very curious and interesting does it work with azure (portal.azure.com) website. At begin I was exciting i logged in , there was some error (check down there)->

"{ "sessionId": "a6fbd76a70424f5596dc2b738321d776", "errors": [ { "errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160ff0fc6'(ADIbizaUX) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account. Trace ID: 684c27ff-01d4-4c6d-bf12-5d74bc826f00 Correlation ID: 2829c5e3-3ea9-4b26-9a6f-1b72428a01c2 Timestamp: 2024-03-13 06:37:33Z", "clientId": "74658136-14ec-4630-ad9b-26e160ff0fc6", "scopes": [ "a57aca87-cbc0-4f3c-8b9e-dc095fdc8978/.default" ] } ] }"

i do not know is it because i created account for few hours, and it is not completed at Microsoft server?? At Finland time I created this account around 15:00 (3pm) and this error came few times. I tried log out and back to login, this error still popup again. And waited for couple and even over few hours and overnight still not working.

Question; What this error mean? Can Microsoft fix it? i would like want to know and use this portal.azure.com website and do something practice. Is there any solution for this?

I checked few same question and answers, so does it mean "outlook.com" this domain does not support at portal.azure.com and tenant host?

Please, and thank you!

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,800 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Harpreet Singh Matharoo 8,111 Reputation points Microsoft Employee
    2024-03-13T07:44:46.3733333+00:00

    Hello @Bit Ware ,

    Thank you for reaching out to Microsoft Azure QnA platform. I have reviewed the session details and see you are trying to connect on Microsoft Azure Portal using Personal Account. The error you are facing is a design behavior and has been answered/documented by one of my colleagues on following QnA post: https://learn.microsoft.com/en-us/answers/questions/1377925/issue-while-logging-in-to-azure-entra-portal-aadst

    Adding content from above QnA post on this thread for your reference:

    Issue: When Users are trying to login to Azure portal using their personal Microsoft Account (Outlook, Gmail, Hotmail..) they are getting AADSTS160021 or AADSTS16000 or AADSTS50020 errors.

    Reason: Whenever you sign in Azure portal using Microsoft Personal Account you by default get connected to the Microsoft Services tenant (f8cdef31-a31e-4b4a-93e4-5f571e91255a). You can also confirm this by navigating to Azure Active Directory > Overview blade and you can see f8cdef31-a31e-4b4a-93e4-5f571e91255a as Tenant ID. In this default tenant, you do not have any directory associated with it which you can confirm by navigating to settings. User's image As this is a standard tenant without any directory associated, you cannot perform actions such as creating new users, groups, enterprise applications, and so on. To perform administrative actions, you must have administrative access to the tenant.

    Solution: For this purpose, you need to create your own tenant rather than using the Microsoft Services (f8cdef31-a31e-4b4a-93e4-5f571e91255a) tenant. To create a new tenant, open in-private/incognito browser window (just to avoid SSO), access https://azure.microsoft.com/en-us/free/ to create a free Azure account.

    When you create a new tenant, you by default become the Global Administrator of the new tenant and have full access to all the options in that tenant.

    If you still want to access Entra portal using your personal Microsoft account only, you can invite that user as a guest user as mentioned here : https://learn.microsoft.com/en-us/azure/active-directory/external-identities/add-users-administrator#add-guest-users-to-the-directory and assign the Global Administrator role.

    Once you are added to an azure tenant and you accept the invite sent to you via email, you can use https://portal.azure.com/#create/Microsoft.AzureActiveDirectory URL to create your own tenant as well.

    I hope this answer helps to resolve your issue. Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.