![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 22%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDW%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
The error AADSTS5000225: This tenant has been blocked due to inactivity means the Microsoft Entra tenant is in an inactive, blocked state and sign-in is no longer allowed.
Actions depend on how long the tenant has been inactive and what role is held:
- Determine whether the tenant can still be reactivated
- Tenants that are blocked due to inactivity can be reactivated only within 20 days of entering the inactive state.
- After 20 days in this state, the tenant is deleted and not recoverable.
- If within 20 days and administrator access exists
- A tenant administrator must contact Microsoft support to request reactivation.
- Use the Microsoft global support phone numbers listed here: global support phone numbers.
- Do not open multiple support cases for the same issue; wait for the response on the existing case.
- If more than 20 days have passed
- The tenant is deleted and cannot be restored.
- A new tenant must be created if continued use of Microsoft Entra ID or Azure is required.
- If only application access is needed (app owner/developer)
- Minimize authentication requests to this blocked tenant until it is reactivated.
- Do not submit additional assistance requests; wait for the admin/support decision.
- Additional practical steps seen in similar cases
- If the tenant is still within the recoverable window, sign-in attempts can be made directly against the tenant in Azure portal using:
-
https://portal.azure.com/<TenantId>or -
https://portal.azure.com/<yourTenantName>.onmicrosoft.com
-
- If the original free Azure subscription path is involved and the account is recognized but blocked at
portal.azure.com, some users have resolved access by going tohttps://signup.azure.comand completing the upgrade/activation flow for the existing account (for example, upgrading a free trial to a pay-as-you-go account) so that the tenant becomes active again.
- If the tenant is still within the recoverable window, sign-in attempts can be made directly against the tenant in Azure portal using:
If none of the above applies (for example, the tenant has been blocked for more than 20 days or support cannot reactivate it), creating a new tenant and reconfiguring resources is required.
References:
- Tenant inaccessible due to inactivity
- 7 Day Old Azure Account: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity - Microsoft Q&A
- Error message: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A