Unable to delete Azure Active Directory tenant because of orphaned "enterprise applications"

Joe Hubbert 21 Reputation points

Hi All,

I'm trying to delete an Azure AD tenant but I am unable to because of remaining enterprise applications.
I have removed all that I can using PowerShell that are not blocked for being Microsoft Internal.

There are a couple of managed identities that would have been made for Azure Data Explorer clusters which have been deleted. These managed identities have no owner or users/groups assigned to them.

The subscription they were created in no longer exists and there are no other subscriptions in this tenant.
I have global administrator rights but I still don't have the right permissions to delete these objects.

Has anyone had a workaround for this?


115117-image.png 2: /api/attachments/115152-image.png?platform=QnA

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
17,523 questions
0 comments No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 56,096 Reputation points

    Hi @Joe Hubbert · Thank you for reaching out.

    I worked on this issue few days back and found that there is no other option than opening a support ticket and engage the Product Team to delete the object from the backend.

    The best practice is to turn off the Managed Identity before deleting the resource.


    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments

0 additional answers

Sort by: Most helpful