Share via

Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle Trace ID: d20596f8-6924-4f80-9935-1502147b5c00 Correlation ID: 019cf860-f

Rajat Agrawal 40 Reputation points
2026-03-16T20:42:41.4133333+00:00

Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle Trace ID: d20596f8-6924-4f80-9935-1502147b5c00 Correlation ID: 019cf860-f

Microsoft Security | Microsoft Entra | Microsoft Entra ID

Answer accepted by question author

Rukmini 42,595 Reputation points Microsoft External Staff Moderator
2026-03-16T21:24:50.5233333+00:00

Hello Rajat Agrawal

As discussed over private messages, you can signup to Azure with the same Email in the Incognito window if you dont want the old tenant.

Once creating the new tenant please login with

 https://portal.azure.com/NewTenantID

If the resolution was helpful, kindly take a moment to click on 210246-screenshot-2021-12-10-121802.pngand click on Yes for was this answer helpful. And, if you have any further query do let us know.

Was this answer helpful?

1 person found this answer helpful.
0 comments

Answer accepted by question author

AI answer

2026-03-16T20:42:59.64+00:00

The error interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity means the Microsoft Entra tenant is in an inactive, blocked state as part of the tenant lifecycle policy. While in this state, sign-ins are blocked and services such as Azure and Azure DevOps cannot be accessed.

Key points from the lifecycle behavior:

  • When a tenant is identified as inactive (for example, after extended non‑use beyond the billing cycle), Microsoft blocks sign‑in to that tenant and returns AADSTS5000225.
  • From the moment the tenant becomes inaccessible, there is a 20‑day window during which the tenant can be reactivated.
  • If the tenant remains inaccessible for more than 20 days, it is permanently deleted and cannot be recovered.

To proceed, the appropriate action depends on the role and how long the tenant has been blocked:

  1. If acting as tenant administrator and it has been less than 20 days since the tenant was blocked:
    • Contact Microsoft support and request reactivation of the tenant. Use the global support phone numbers listed at the data protection and support page referenced in the documentation.
    • Do not open multiple support cases for the same issue; wait for the decision on the existing case.
  2. If it has been more than 20 days since the tenant became inaccessible:
    • The tenant is deleted and cannot be recovered.
    • Any data in that tenant is subject to Microsoft’s data protection and deletion policies.
  3. If acting as an application owner or developer whose app is trying to authenticate against this blocked tenant:
    • Minimize or stop sending authentication requests to the deactivated tenant until it is reactivated.
    • Do not submit additional assistance requests beyond the one raised by the administrator.

If access to Azure Portal or Entra admin center is needed to work around the situation (for example, to create or use another tenant), sign‑in can be attempted directly with a specific tenant ID or tenant name in the URL, such as:

  • https://portal.azure.com/<TenantId>
  • https://portal.azure.com/<yourTenantName>.onmicrosoft.com

If the affected tenant cannot be reactivated (for example, it is already past the 20‑day window), a new tenant must be created and used going forward.

References:

AI-generated content may be incorrect. Read our transparency notes for more information.

Was this answer helpful?

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.