How to fix Error AADSTS50020 - User account from identity provider does not exist in tenant

Erik G 0 Reputation points
2024-08-03T07:59:49.7466667+00:00

I am a basic user of Microsoft Teams. I use my personal gmail account to login and intended to use it for private use.

I had been asked to connect with someone from a business that I have a relationship with, and I inadvertently created an organization which I now cannot leave or get access to.

My Microsoft Teams allows me to access my prviate account through my myname@gmail.com and notes that I have a separate organization account to switch to, which has authentication errors. When I try to login to this account I get:

AADSTS50020: User account '[hidden]@gmail.com' from identity provider 'live.com' does not exist in tenant '[hdden]' and cannot access the application '5e3ce6c0-2b1f-4285-8d4b-75ee78787346'(Microsoft Teams Web Client) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.

I have no experience with Microsoft Azure, but I have tried logging in to see if I can somehow manage the organization. This is what I get and am not able to login in again. Honestly, I just want to clean up my Microsoft Teams account and get rid of this lingering organization that I cannot leave. My end goal is just to delete it.

{
  "sessionId": "81c8f313786a4bc1a6369fab9c28384c",
  "errors": [
    {
      "errorMessage": "interaction_required: AADSTS160021: Application requested a user session which does not exist. Trace ID: ac8447d7-e396-424a-a849-51312b6c0d00 Correlation ID: ccf5fe1c-d5cb-4994-8c4f-c7614c694b44 Timestamp: 2024-08-03 07:52:19Z",
      "clientId": "74658136-14ec-4630-ad9b-26e160ff0fc6",
      "scopes": [
        "a57aca87-cbc0-4f3c-8b9e-dc095fdc8978/.default"
      ]
    }
  ]
}

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,364 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Sandeep G-MSFT 18,691 Reputation points Microsoft Employee
    2024-08-05T04:00:56.3133333+00:00

    @Erik G

    Thank you for posting this in Microsoft Q&A.

    I understand that you are facing issue while access Azure resources with your account as you sign in in Microsoft Services tenant as a standard user with restricted access.

    This error usually occurs when you sign into Azure resources using your personal account which is not added as an external/guest user to an Azure AD tenant.

    You can ask the global administrator to invite you as a guest user as mentioned here: https://learn.microsoft.com/en-us/azure/active-directory/external-identities/add-users-administrator#add-guest-users-to-the-directory.

    Once you are added to an azure tenant then you accept the invite sent to you via email, then you can also create your own tenant to have administrative access to perform all actions.

    Alternatively, if you want to perform administrative actions, you must have administrative access to the tenant, for which you need to create your own tenant rather than using the Microsoft Services tenant. When you create a new tenant, you by default become the Global Administrator of the new tenant and have full access to all the options in that tenant. To create a new tenant, open in-private/incognito browser window, access https://azure.microsoft.com/en-us/free/ to create a free Azure account.

    Once the new account is created, you should be able to see and switch to the new tenant by clicking on the settings icon as highlighted below:

    210732-settings.png

    Let us know if you have any further questions.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.