This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 99%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
I'm having viewing the Azure Active directory blade in my newly created account.
The error I'm getting is below:
The portal is having issues getting an authentication token. The experience rendered may be degraded.
Additional information from the call to get a token:
Extension: Microsoft_Azure_Support
Resource: self
Details: The logged in user is not authorized to fetch tokens for extension 'Microsoft_Azure_Support' because the user account is not a member of tenant 'xxxx-xxxx-xxxx-xxxx-xxxx'. Error details: AADSTS50020: User account '{EmailHidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application 'xxxx-xxxx-xxxx-xxxx-xxxx'(Azure Portal) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
Trace ID: xxxx-xxxx-xxxx-xxxx-xxxx
Correlation ID: xxxx-xxxx-xxxx-xxxx-xxxx
Timestamp: 2022-08-15 01:38:13Z
@Tech Stafflink
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
Hi TechStaff,
Have you tried logging in with a PrivateBrowser/Incognito?
If this is a non-Azure domain user account, did you add them as a guest, or does the new user match your azure domain (eg. bob@Company portal .com - contoso.com being your domain).
Hello @Tech Stafflink
Thank you for your post.
On this case scenario, as @David Broggy was saying, you need to either use the @onmicrosoft.com on the user that you created or was given from the admin group.
If you want to use a customer email address like outlook.com or hotmail.com or any other, this has to be added as a external user... Then you will get an email invitation on your email address that was used.
This will take you directly to the correct Tenant/Subscription for you to log in.
Please ensure that if any azure role was given that it was approved from the PIM blade(Privileged Identity Management)
I hope this can be useful to get this going : )
Looking forward to your feedback,
Cheers,
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
Hello @Tech Stafflink
I hope you are doing great.
I just wanted to know if you had any chance to review previous observations.
Looking forward to your feedback,
Cheers,
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 95%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Hello @Tech Stafflink , I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
----------
Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.