Share via

Converted myself from internal to external. Can't access Azure

Li 5 Reputation points
2024-06-20T14:09:49.71+00:00

I was playing around with the settings and ended up converting myself (the only person on the subscription) from internal user to external user. Now I am unable to access my own account.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,577 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Vinodh247 13,536 Reputation points
    2024-06-21T05:38:48.5366667+00:00

    Hi Li,

    Thanks for reaching out to Microsoft Q&A.

    When you convert a local user to an external user using the Azure Portal, an additional identity (e.g., ‘ExternalAzureAD’) is added to the user profile. Did you try to reach out to azure support? since you are the only person on this subscription, they will help you to revert external to internal user.

    I am adding this thread which has numerous questions and answers with it.

    https://learn.microsoft.com/en-us/answers/questions/1373549/questions-about-users-converted-to-external

    Please 'Upvote'(Thumbs-up) and 'Accept' as an answer if the reply was helpful. This will benefit other community members who face the same issue.

    0 comments
  2. Sandeep G-MSFT 16,691 Reputation points Microsoft Employee
    2024-06-24T05:50:12.0633333+00:00

    @Li

    Thank you for posting this in Microsoft Q&A.

    In this situation you can contact your Global admin of you tenant and ask them to change your user type to member again by using steps mentioned in below article,

    https://learn.microsoft.com/en-us/entra/identity/users/convert-external-users-internal

    If you are the only global admin on the account and are blocked entirely, you can reach out to our support team. You can look into below article to get support numbers depending on your country.

    https://support.microsoft.com/en-us/topic/global-customer-service-phone-numbers-c0389ade-5640-e588-8b0e-28de8afeb3f2

    or creating a ticket through a different account:  https://learn.microsoft.com/en-us/microsoft-365/admin/get-help-support?view=o365-worldwide#phone-support

    Create a ticket with Microsoft support team. Give them the tenant ID which is unable to access entra portal in your description. Tell them that no admin account has access anymore.

    Once you create a ticket with support team you will have to work with our data protection team. You will have to first prove your identity against your tenant for security purpose. Post that this team will help you with help you in getting access to your tenant or unlock your account depending on your scenario.

    Also, for the future, you can create an emergency access account (break glass) in Azure AD. This account will help prevent being accidentally locked out of your Azure Active Directory (Azure AD) organization because you can't sign in for any reason.

    https://docs.microsoft.com/en-us/azure/active-directory/roles/security-emergency-access

    Let me know if you have any further questions.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.