Share via

Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle Trace ID: 32161d45-d999-4364-851e-c8be18ce1e00 Correlation ID: 019d0251-2

Alex Jones 5 Reputation points
2026-03-18T19:28:02.09+00:00

Error message: interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity. To learn more about tenant lifecycle policies, see https://aka.ms/TenantLifecycle Trace ID: 32161d45-d999-4364-851e-c8be18ce1e00 Correlation ID: 019d0251-2296-7d1e-8c13-215e54920dae Timestamp: 2026-03-18 18:59:25Z

Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest

  1. AI answer

    2026-03-18T19:28:14.0866667+00:00

    The error interaction_required: AADSTS5000225: This tenant has been blocked due to inactivity means the Microsoft Entra tenant is in an inactive, blocked state as part of the tenant lifecycle. While blocked, sign-ins to that tenant are prevented.

    Key points from the tenant lifecycle behavior:

    • When a tenant is marked inactive, Microsoft blocks logins to that tenant and returns AADSTS5000225.
    • Administrators have up to 20 days from when the tenant becomes inaccessible to request reactivation.
    • If the tenant remains inactive and blocked for more than 20 days, it is permanently deleted and cannot be recovered.

    To proceed, the appropriate actions depend on the role and the age of the block:

    1. If an administrator needs to reactivate the tenant and it has been blocked for less than 20 days:
      • The tenant administrator must contact Microsoft support using the global support phone numbers to request reactivation.
      • Do not submit multiple support requests for the same tenant while a case is in progress.
    2. If the tenant has been blocked for more than 20 days:
      • The tenant is deleted after 20 days in the inaccessible state and is not recoverable.
      • Review Microsoft’s data protection policies for details on data handling and deletion.
    3. For application owners or developers targeting this tenant:
      • Minimize authentication requests against the blocked tenant until it is reactivated.
      • Do not open multiple assistance requests; wait for Microsoft’s response on any existing case.

    If access to Azure Portal is needed and the tenant is still within the recoverable window, the administrator can attempt to sign in directly to the tenant using its tenant ID or tenant name in the Azure Portal URL (for example, https://portal.azure.com/<TenantId> or https://portal.azure.com/<yourTenantName>.onmicrosoft.com) and then open a support case from there, if the subscription type allows support requests.

    If the tenant is already beyond the 20‑day window and has been deleted, a new tenant must be created to continue using Microsoft Entra ID and related services.

    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.