Share via

Encountered authentication problem

afeng 1 Reputation point
2022-08-23T09:01:18.09+00:00

I'm signing in https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/ ~/Overview
403 error encountered
I am currently unable to use any of azure's services. How can I solve this problem?

Error report log:
Get additional information about the call of the token:
Extensions: Microsoft_ AAD_ IAM
Resources: Microsoft graph
Details: the login user is not authorized to extract the token of the extension "microsoft_aad_iam" because the user account is not a member of the tenant "f8cdef31-a31e-4b4a-93e4-5f571e91255a". Error details: aadsts50020: user account '{emailhidden}' from identity provider 'live com' does not exist in tenant 'Microsoft Services' and cannot access the application 'c44b4083-3bb0-49c1-b47d-974e53cbdf3c'(Azure Portal) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
Trace ID: 7f103c80-3dd0-4156-b9f9-daf678327900
Correlation ID: 2520bace-63a5-47d3-821c-1c4583d5e45d
Timestamp: 2022-08-23 08:46:21Z

Original log:
获取令牌的调用的其他信息:
扩展插件: Microsoft_AAD_IAM
资源: microsoft.graph
详细信息: 登录用户无权提取扩展 "Microsoft_AAD_IAM" 的令牌,因为该用户帐户不是租户 "f8cdef31-a31e-4b4a-93e4-5f571e91255a" 的成员。错误详细信息: AADSTS50020: User account '{EmailHidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application 'c44b4083-3bb0-49c1-b47d-974e53cbdf3c'(Azure Portal) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
Trace ID: 7f103c80-3dd0-4156-b9f9-daf678327900
Correlation ID: 2520bace-63a5-47d3-821c-1c4583d5e45d
Timestamp: 2022-08-23 08:46:21Z

233977-snipaste-2022-08-23-16-46-29.png233996-snipaste-2022-08-23-16-45-03.png

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Graph
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 44,721 Reputation points
    2022-08-23T09:12:53.06+00:00

    Hi,

    Thank you for asking this question on the Microsoft Q&A Platform.

    1. Try using your browser in InPrivate/Incognito (no other tabs open)
    2. Should the issue persist clear cache and cookies - Try again.

    Is this your tenant and are you the administrator of the tenant? Do you have any other administrator account or someone to assist you to verify your account in the tenant? It seems the account you are trying to login does not have access / authroization to login.

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

  2. CarlZhao-MSFT 46,406 Reputation points
    2022-08-23T09:55:47.297+00:00

    Hi @afeng

    It looks like you need to add the personal account as a guest to the "f8cdef31-a31e-4b4a-93e4-5f571e91255a" tenant.

    Use the Azure portal or MS graph api.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.