New to Azure, Account is in completely broken state

Question

I created a trial account to try out application deployments in the Azure environment at the request of a government customer. My goal was to set up a corporate account, add my lead engineer for the project to the account, and enable him to deploy a containerized application. This sounds like a very basic user scenario to me.

So far, this is in the top 3 worst customer experiences I've ever had.

I am not generally familiar with the terminology of Azure or with AD, so forgive me if I get some concepts wrong.

The default domain Azure created for me was a truncated combination of my name, my company name, and onmicrosoft.com. My username in that environment is my email name prepended to that, truncated, with #EXT, and then @ that long domain name. It literally spans my whole screen.

This default is completely unacceptable for a professional operation.

After a lot of trying to just change things that Azure will not allow you to change, I arrived at trying to add my company real domain. When I do that, I have to validate using DNS records, and the azure instructions are incomplete. Validating my company domain using DNS records simply doesn't work because I already have TXT records and the "@" sign they want me to use as the hostname appears to be a bogus subdomain that AWS route-53 won't register. When I tried to get support, All I qualify for as a trial account is a chat that just kept referring me to the instructions pages I had already read, but were wrong; or I get questions about whether I have a third party SSL provider. Dead end.

So then I decided to try to add a new tenant in AD, using mycompanyname.onmicrosoft.com as the domain. I was able to do that, and eventually changed the first domain to include the name BROKEN so I could differentiate it. I eventually figured out I had to migrate my subscription. But...

Now when I log in, I am connected to the original tenant. I can't change it, because the subscription was migrated to the new tenant. The entire operation is dead in the water.

I need somebody from support who can look at my account and tell me how to fix it. The default support cannot do that. I was directed to create this post so that it can be escalated.

Answer 1

1) There is a "switch" button in the controls on the "manage tenants" blade I was able to use to switch to the new domain. I still cannot delete the old domain, and trying causes it to switch back.
2) The domain validation should not include the "@" in the instructions. It would be pretty straightforward to include links to other DNS providers. In my case, that's AWS - but the issue I had was that AWS doesn't allow you to create multiple TXT records in route53, you have to put the text strings one per line in their interface. After doing this, the verification succeeded and I was able to switch over to my validated name.

Answer 2

• The portal.azure.us URL doesn't work. However, when I go to #settings on the regular website I can log in.
• Errors:
  • (in a banner at the top of the screen) We have detected that your current user account is external to this tenant. Please sign-out and login with Global Admin credentials using the initial default domain name such as user@Company portal .onmicrosoft.com. Learn more [ net effect: cannot do anything ]
  • (in the row showing an error icon when deleting) Delete all license-based subscriptions [ I have no idea what license-based subscriptions I have ]