![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 16%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 10%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
The error AADSTS5000224 indicates that the Microsoft Entra (Azure AD) tenant associated with that domain has been deauthenticated and is no longer available. In this state, sign-in to the tenant cannot be restored by configuration changes from the portal or client side.
Because tenant-level deauthentication and recovery are handled only by Microsoft, the next step is to contact Microsoft support so the Data Protection or support team can investigate the tenant status using the correlation ID and domain information, and advise whether the tenant can be reactivated or if data has been permanently removed.
Since sign-in is blocked and the tenant ID is unknown, use an external channel (for example, Microsoft support phone numbers or a separate tenant, as described in the referenced guidance) to open a support request and provide:
- The admin sign-in name (UPN) and custom domain used.
- The error code AADSTS5000224 and the correlation ID shown on the page.
- Confirmation that access to the Microsoft 365 admin center is not possible because of this error.
Microsoft support will then validate identity and tenant ownership and determine whether the tenant can be re-enabled.
References:
- "Sorry, but we're having trouble signing you in" when a user signs in to Microsoft 365, Azure, or Intune
- I have a Micrsoft business account and I am the admin and the only user registered under this account. I can't log in because i have replaced my phone and the authenticator doesn't work. - Microsoft Q&A
- Severity A Situation - Locked out of global admin account (MFA) - business down - Microsoft Q&A