Share via

Token error - Selected user account does not exist in tenant 'Microsoft Services'

Amir Hamza 20 Reputation points
2025-10-09T16:21:19.7633333+00:00

Hi all,

I am logged in but get the following errors; they are preventing me from submitting a support ticket. 

{
  "sessionId": "3fbf6bb04b604b26bd175ef6486ab997",
  "errors": [
    {
      "errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application 'e6694c91-1590-4e35-9bb7-b865c638b9c1'(Microsoft_Azure_SupportPortalExtension) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account. Trace ID: f22e263a-dad5-483f-9035-36e3fb4d6000 Correlation ID: 7d275d37-d9ad-4405-bbdb-8999c3ea140d Timestamp: 2025-10-09 16:18:40Z",
      "clientId": "e6694c91-1590-4e35-9bb7-b865c638b9c1",
      "scopes": [
        "959678cf-d004-4c22-82a6-d2ce549a58b8/.default"
      ]
    }
  ]
}

Selected user account does not exist in tenant 'Microsoft Services' and cannot access the application '50aaa389-5a33-4f1a-91d7-2c45ecd8dac8' in that tenant. The account needs to be added as an external user in the tenant first. Please use a different account.

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
0 comments
Answer accepted by question author
  1. Praveen Chivarla 1,275 Reputation points Microsoft External Staff Moderator
    2025-10-10T09:47:21.02+00:00

    Hi Amir,

    Thank you for posting your query on Microsoft Q&A.

    The error AADSTS16000 means that the user account from the specified identity provider (such as a personal Microsoft account from live.com) does not exist in the Microsoft Entra ID (Azure AD) tenant you are trying to access.

    In Microsoft Entra ID, this error occurs when your account is not registered or added as a guest in the tenant you want to access. It can also happen if you try to sign in with a personal account to a tenant that only allows organizational accounts, or if the application’s configuration does not permit your account type.

    Please follow the steps below to fix the issue:

    Add User as a Guest in the Tenant: The administrator of the Microsoft Entra tenant should add your account as a guest user. This can be done in the Microsoft Entra admin center: Go to Microsoft Entra ID > Users > New guest user. This step is necessary if you are from another tenant or using a personal Microsoft account.

    Check Application Sign-in Audience: Verify that the application you are accessing allows your account type. The application registration’s signInAudience should match your account type (organizational vs. personal). Multi-tenant applications should allow AzureADandPersonalMicrosoftAccount.

    Login Using the Correct Tenant URL: Sign in using the specific tenant URL, for example: https://login.microsoftonline.com/{tenant-id}/

    Sign Out and Sign Back In: Fully sign out of all Microsoft accounts in your browser and try signing in again with the account associated with the target tenant.

    Verify User Account Exists: Tenant administrators can confirm if your user account is present or invited by checking in Microsoft Entra admin center or using Microsoft Graph API.

    Please refer to:

    Please click "Accept as Answer" if this resolves your issue. This will help others with a similar problem find the solution.

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.