Share via

The Azure tenant has been blocked due to inactivity (error AADSTS5000225), and it is urgently needed to be restored!

Qiawen Zhang 0 Reputation points
2026-03-08T05:13:45.53+00:00

Title: Azure tenant blocked due to inactivity (error AADSTS5000225), urgent recovery needed

Details:

I encountered an error when trying to sign in to the Azure portal, indicating that my tenant has been blocked. The full error details are as follows:

Error Message:

AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle

Timestamp: 2026-03-08 04:50:51Z

Trace ID: <PII REMOVED>

Correlation ID: <PII REMOVED>

Background:

This tenant has likely not been used for a very long time (definitely more than 20 days) and is now inaccessible. I understand there is a 20-day recovery window, but it may have already expired. I need to confirm whether the tenant can still be recovered. If so, please guide me on how to proceed. If it cannot be recovered, what will happen to my Azure subscriptions and associated data?

I am not sure of the specific tenant domain name, but this is the account I used to sign in: “[EMAIL REMOVED]"

Request:

Please help confirm the status of this tenant and whether there is any possibility of recovery. If additional proof of ownership is required, please let me know what specific information is needed.

Thank you! Note:PII Redacted at support side.

Microsoft Security | Microsoft Entra | Microsoft Entra ID

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shubham Sharma 13,490 Reputation points Microsoft External Staff Moderator
    2026-03-09T03:56:00.2333333+00:00

    Hello Qiawen Zhang

    Thank you for reaching out to Microsoft Q&A.

    The error message you encountered indicates that your tenant has been inactive for over 200 days past the billing cycle, triggering Microsoft’s effort to remove inactive tenants. When a tenant remains inactive for this period, the OMS commerce system imposes a login block (AADSTS5000225). Twenty days after the login block is applied, the tenant is permanently deleted.

    Tenant inaccessible due to inactivity

    If you plan to unblock your inactive tenant, it’s essential that it has been blocked for less than 20 days. After the 20-day period, the tenant is permanently deleted and cannot be recovered.

    If it has been less than 20 days since the block, please provide the requested details for further assistance via private message:- Note: If it's a test tenant, please re-create a new tenant for testing purposes.

    QuickStart: https://learn.microsoft.com/en-us/entra/fundamentals/create-new-tenant

    Do let me know if you have any queries, we are happy to assist you further.

    0 comments
  2. Q&A Assist
    2026-03-08T05:14:00.9733333+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    The error AADSTS5000225 indicates that the Microsoft Entra tenant is blocked due to inactivity and has entered the “inaccessible” state.

    Key points from the documented behavior:

    1. When a tenant is blocked due to inactivity
      • Sign-in attempts return an error like:
        • AADSTS5000225: This tenant has been blocked due to inactivity.
      • In this state, the tenant is inaccessible and normal portal sign-in will fail.
    2. Recovery window and permanent deletion
      • Administrators can request reactivation only within 20 days of the tenant entering the inactive (blocked) state.
      • If the tenant remains in this inaccessible state for longer than 20 days, it is deleted and not recoverable.
      • After deletion, the tenant and its associated data are removed according to Microsoft’s data protection policies.
    3. What to do if recovery might still be possible
      • If there is any chance the tenant has been blocked for less than 20 days, the tenant administrator must contact Microsoft support directly:
        • Use the global support phone numbers listed in the documentation.
      • Only one assistance request should be open at a time; do not submit multiple tickets for the same issue.
      • Be prepared to prove ownership/administrative control of the tenant when working with support (for example, by authenticating as the tenant admin and providing tenant-identifying information such as tenant ID or domain name).
    4. If the 20‑day window has passed
      • The tenant is deleted and cannot be restored.
      • Azure resources, subscriptions, and directory objects in that tenant are not recoverable once the tenant deletion is completed.
      • For details on how data is handled after deletion, review Microsoft’s data protection policies.
    5. Additional practical steps
      • If portal sign-in fails generically, it can help to try signing in directly to the tenant in the Azure portal using the tenant ID or tenant name in the URL (for example, https://portal.azure.com/<TenantId> or https://portal.azure.com/<yourTenantName>.onmicrosoft.com) to confirm that the block is tenant-specific.
      • If the original tenant cannot be recovered, a new tenant can be created in Microsoft Entra admin center and used going forward, but it will not bring back data from the deleted tenant.

    Because tenant status and exact block dates are not exposed through this documentation, confirmation of whether this specific tenant is still within the 20‑day recovery window requires direct engagement with Microsoft support by the tenant administrator.

    References:

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.