![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 2%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAB%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 99%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
The error message AADSTS50020 indicates that the user account from the identity provider (in this case, a Gmail account) does not exist in the specified Azure Active Directory tenant (Micron Technology, Inc.). To resolve this issue, the account needs to be added as an external user in the tenant. Here are the steps you can follow:
- Invite the User: Ensure that the Gmail account is invited to the tenant as a guest user. You can do this by following the steps in the Azure portal to add guest users.
- Sign Out and Sign In Again: After the account has been invited, the user should sign out from any active sessions and then sign in again using the correct Azure Active Directory user account.
- Check the Application Access: Ensure that the application (IAM_SAML_Eightfold) allows access to the invited user. If the application requires user assignment, make sure the user is assigned to the application.
By following these steps, the user should be able to access the application without encountering the AADSTS50020 error.