Share via

I am completely locked out of my Azure AD B2C tenant and need guidance on identity recovery.

Jing Wu 0 Reputation points
2026-02-08T12:30:27.6933333+00:00

I am completely locked out of my Azure AD B2C tenant and need guidance on identity recovery.

Context:

  • This is an Azure AD B2C tenant (Microsoft Entra ID).
  • I am the only Global Administrator.
  • The tenant was previously accessible.
  • I mistakenly used my Global Admin account in a B2C consumer sign-up / sign-in flow.
  • After that, my admin account can no longer complete MFA.

Current issue:

  • When trying to sign in to Entra Admin Center or Azure Portal and switch to the B2C directory, MFA is required but Microsoft Authenticator push is never delivered.
  • No second Global Administrator exists.
  • I cannot access any portal to open a support ticket.
  • Standard lockout links and support pages are no longer available or require admin sign-in.

Impact:

  • Full tenant lockout.
  • No ability to manage users, B2C policies, or add another admin.

Question:

  • What is the current official process to recover access to an Azure AD B2C tenant when the only Global Administrator is locked out due to MFA failure?
  • Is there an identity recovery or tenant ownership verification path that does not require existing admin portal access?

Any guidance from Microsoft employees or experienced Azure AD B2C admins would be greatly appreciated.

Microsoft Security | Microsoft Authenticator
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2026-02-08T12:30:39.1866667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    If you are completely locked out of your Azure AD B2C tenant and are the only Global Administrator, the recommended steps for recovery involve contacting Microsoft Support directly. Since you cannot access the admin portal to open a support ticket, you should reach out to the Azure Data Protection team for assistance. Here are the steps you can take:

    1. Contact Support: Use the support phone number for your region to reach the Azure Data Protection team. They can help verify your identity and assist in regaining access to your tenant. You can find the support contact information on the Microsoft support page.
    2. Identity Verification: Be prepared to provide any necessary information that can help verify your identity and ownership of the tenant. This may include details about the tenant, your account, and any previous access you had.
    3. Recovery Options: Ask the support team about any identity recovery or tenant ownership verification processes that do not require existing admin portal access. They may have specific protocols for situations like yours.
    4. Future Prevention: Once access is restored, consider setting up a second Global Administrator account to prevent future lockouts. This can be done by adding another user with Global Admin privileges to your tenant.

    These steps should guide you through the recovery process for your Azure AD B2C tenant.

    References:

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.