Share via

Federation Lockout – Request Forced Conversion of Domain to Managed Authentication

Md Rafiqul Islam 0 Reputation points
2026-02-07T22:39:56.6133333+00:00

Hello Microsoft Support Team,

I am requesting urgent assistance with a federation lockout in my Microsoft Entra ID tenant.

Summary of the Issue

My primary custom domain <PII REMOVED> is currently configured as Federated with Google as the identity provider.

The Google IdP configuration has been removed on the Google side, and the federation metadata is no longer valid. As a result:

No native users from the federated domain can sign in

I cannot access any native Global Administrator account

I cannot convert the domain to Managed authentication

I cannot update or remove the federation settings

Current Access

I can access the tenant only through a Global Administrator account from another directory, but Microsoft Entra does not allow external identities to modify domain authentication settings.

What I Need

I request that Microsoft Support:

Forcibly convert the domain from Federated → Managed authentication, and

Remove the invalid Google federation settings from the tenant.

Tenant Information

Tenant Name: <PII REMOVED>

Tenant ID (GUID): <PII REMOVED>

Federated Domain: <PII REMOVED>

Admin Contact Email: <PII REMOVED>

Mobile: <PII REMOVED>

Domain Ownership Verification

I can add any TXT record you require to the DNS zone to verify ownership.

Additional Notes

This is a standard federation lockout scenario. I have no remaining native admin accounts, and the federated IdP is no longer functional. I need Microsoft to perform the internal procedure to reset the domain authentication type.

Thank you for your assistance.

Please let me know the required TXT record or next steps.

Kind regards,

Rafiqul

Founder, Akcell BD Ltd.

Microsoft Security | Microsoft Entra | Microsoft Entra ID

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shubham Sharma 10,725 Reputation points Microsoft External Staff Moderator
    2026-02-17T14:52:52.8933333+00:00

    Hello Md Rafiqul Islam

    Thanks for sharing the requested details in Private messages tab.

    The issue pertains to a tenant lockout, where no other global admin in the tenant has the necessary permissions to login and make changes in your tenant.

    To resolve this, we have engaged our Data Protection team through a support ticket. They will reach out to you via email or phone to help restore access to the tenant and assist in resolving the issue.

    0 comments
  2. Md Rafiqul Islam 0 Reputation points
    2026-02-11T05:24:51.74+00:00

    Hi, sorry for delay on responding.

    Custom domain Name: <PII REMOVED>

    Your tenant ID: <PII REMOVED>

    Contact Email address: <PII REMOVED>

    Contact Phone Number: <PII REMOVED>

    Country: <PII REMOVED>

    TimeZone: <PII REMOVED>

    Regards,

    Rafiqul Islam

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.