![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 94%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWJ%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 22%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETG%3C/text%3E%3C/svg%3E)
The error interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity indicates that the Microsoft Entra ID (Azure AD) tenant associated with the Azure account is blocked because it has been inactive.
Key points from the error behavior in similar cases:
- Tenants that are inactive for an extended period are blocked from sign-in.
- After a tenant is blocked, there is a limited window (20 days) during which it can be reactivated.
- After 20 days in the blocked state, the tenant is permanently deleted and cannot be recovered.
To proceed, use the path that matches the situation:
- If the tenant has been blocked for less than 20 days
- A tenant administrator must contact Microsoft support to request reactivation.
- Administrators can use the global support phone numbers listed under Microsoft support for tenant reactivation (see “Tenant inaccessible due to inactivity” in the referenced Q&A articles).
- While waiting for support, avoid opening multiple support requests for the same tenant; this can slow down resolution.
- If sign-in to the Azure portal fails directly
- Try signing in by explicitly targeting the tenant in the URL, for example:
-
https://portal.azure.com/<TenantId> - or
https://portal.azure.com/<yourTenantName>.onmicrosoft.com
-
- If this still shows AADSTS5000225, the tenant is blocked and requires support intervention as above.
- Try signing in by explicitly targeting the tenant in the URL, for example:
- If the tenant is already beyond the 20‑day blocked window
- The tenant is permanently deleted and cannot be restored.
- In this case, create a new tenant and use that for Azure services:
- Go to
https://entra.microsoft.com/and sign in. - Navigate to Entra ID → Overview → Manage tenants.
- Create a new tenant and note its domain name (for example,
newtenant.onmicrosoft.com). - Access the Azure portal with the new tenant context, for example:
https://portal.azure.com/newtenant.onmicrosoft.com.
- Go to
- If the account is a free trial or very new
- In some cases, going to
https://signup.azure.comand signing in with the same account can surface an option to “continue” or “upgrade” the existing free account to a pay‑as‑you‑go subscription, which can restore access. - Use a clean browser session (for example, Incognito/InPrivate, with cookies and site data cleared) when doing this.
- In some cases, going to
If the goal is to close or detach a personal Microsoft account that is stuck due to an organization/tenant link, this requires working with the appropriate Microsoft support channel (for example, Outlook/Microsoft account support) rather than Azure support, because only they can manually remove the account from the organization in some scenarios.
References:
- Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity - Microsoft Q&A
- 7 Day Old Azure Account: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Error message: AADSTS5000225: This tenant has been blocked due to inactivity. - Microsoft Q&A
- Personal Microsoft account cannot be closed due to organization link (Error AADSTS5000225) - Microsoft Q&A
- Can not access Azure - Microsoft Q&A