Fix AADSTS50177 - User Not Found in Tenant

AADSTS50177 – User Not Found in Target Tenant

Error: AADSTS50177 – User does not exist in tenant and cannot access the application

This error means the user referenced in the delegated access attempt isn't recognized in the customer tenant. It typically results from a broken or missing GDAP relationship.


Cause: The delegated admin account or service principal may not be correctly assigned in the GDAP relationship, or the relationship has expired.

Resolution

Verify your GDAP relationship for the tenant:

  • Confirm that the tenant has an active GDAP relationship with your partner tenant
  • Ensure that the correct security group is used in the GDAP permissions
  • Ensure your delegated admin account is a member of that group

You can follow the full validation steps here: Checking your GDAP relationship

    • Related Articles

    • User Not Found – Account Does Not Exist or Is Inactive

      Error: User was not found This error usually appears when the partner relationship between your tenant and the customer has been removed — or the GDAP relationship has expired or wasn’t set up properly. Cause: Without a valid and active GDAP ...

    • AADSTS700003 – Device Object Not Found in Tenant

      Error: AADSTS700003 – Device object was not found in the tenant This error occurs when the device originally used for delegated admin access has been deleted from your directory. Cause: If the Azure AD device associated with your delegated admin ...

    • AADSTS500571 – Guest User Account Disabled

      Error: AADSTS500571 – The guest user account is disabled This error typically happens when your named user account (used for delegated admin access) has been added to the customer tenant as a guest user — usually from SharePoint, OneDrive, or Teams ...

    • Group Mapping Error – Group ID Not Found

      Error: GroupId not found – Username to Database update This error occurs when a custom license or contact filter in Sync 365 is configured to use a Microsoft Entra ID (Azure AD) group that no longer exists or has been renamed. Cause: The group ...

    • Management Role Error – User Not Assigned Roles

      Error: The user isn't assigned to any management roles This error means the delegated admin account does not have the required directory roles assigned within the customer tenant — typically via the GDAP security group. Cause: The delegated admin ...