This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 11%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIW%3C/text%3E%3C/svg%3E)
I accidentally change my only user type to 'internal' ,
After that I cannot undo, and not able to access Microsoft Entra ID menu at all.
The selected user account doesn't exist in the tenant 'Microsoft Services' and cannot access the application '631d36ba-ddbd-4e88-807a-b8cd54f9b390' in this tenant. This account needs to be added first as an external user in the tenant. Please use a different account.
{
"sessionId": "1a96a6e96e974493b425f3e1496df3ab",
"errors": [
{
"errorMessage": "interaction_required: AADSTS160021: Application requested a user session which does not exist. Trace ID: 1e3729ff-e756-4977-a6f7-159cc2867500 Correlation ID: 250da985-fea5-40fb-9cf8-c557b5e23615 Timestamp: 2024-07-23 07:47:42Z",
"clientId": "74658136-14ec-4630-ad9b-26e160ff0fc6",
"scopes": [
"a57aca87-cbc0-4f3c-8b9e-dc095fdc8978/.default"
]
}
]
}
How Can I gain access again??
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
In this situation you will have to contact your global admin of the resource tenant to get your account converted to external account.
If you are the only global admin on the account and are blocked entirely to use Entra ID services, you can reach out to our support team. You can look into below article to get support numbers depending on your country.
or creating a ticket through a different account: https://learn.microsoft.com/en-us/microsoft-365/admin/get-help-support?view=o365-worldwide#phone-support
Create a ticket with Microsoft support team. Give them the tenant ID which is locked out in your description. Tell them that no admin account has access anymore and your partners also have no access anymore.
Once you create a ticket with support team you will have to work with our data protection team. You will have to first prove your identity against your tenant for security purpose. Post that this team will help you with help you in getting access to your tenant or unlock your account depending on your scenario.
Also, for the future, you can create an emergency access account (break glass) in Azure AD. This account will help prevent being accidentally locked out of your Azure Active Directory (Azure AD) organization because you can't sign in for any reason.
https://docs.microsoft.com/en-us/azure/active-directory/roles/security-emergency-access
Let us know if you have any further questions.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Thanks for reply,
MS support tried to helped me but they said I need to open a ticket on Entra support.
But I cannot open a ticket because also access problem occurs due to the token access. I tried to open a ticket with another new account, but it requires paid subscribe to open a technical ticket. dead end... T_T
Thank you for contact MS support via phone. Can you ask them only to create a support case on behalf of you, as you are unable to access the Azure portal.
Inform them about your limitation on accessing portal and they will create a support case on behalf of you and they will route the case to appropriate team.
Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread.