![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 93%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAI%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra External ID
Managing external identities to enable secure access for partners, customers, and other non-employees
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 10%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
The block on sending B2B guest invitations due to “suspicious activity” and the 403/Forbidden errors cannot be removed through configuration in the tenant. This type of restriction must be handled directly by Microsoft support.
Required actions:
- Open a support ticket with Microsoft
- Sign in to the Microsoft 365 or Azure portal with a Global Administrator or other support-eligible admin account.
- Create a new support request describing:
- The exact error messages:
- “Invitations are blocked for this directory due to suspicious activity. Please contact Microsoft support for help. Error: 403 Forbidden ErrorCode: Forbidden”
- “Insufficient privileges to complete the operation” when sending invitations.
- The approximate number of invitations sent and that the tenant is now blocked from sending B2B invitations.
- The exact error messages:
- Ask specifically for the block on B2B guest invitations to be investigated and removed.
- Be prepared for identity and security verification
- Support may route the case to internal security/data protection teams to verify tenant ownership and confirm that the activity was legitimate before removing the block.
- Provide any requested business documentation and context about the bulk invitations.
- After Microsoft removes the block
- Test by inviting a single guest user via the Microsoft Entra admin center (Entra ID → External Identities → All users → New guest user).
- If invitations still fail, have an admin verify:
- External collaboration settings and collaboration restrictions (allow/block lists) under External Identities → External collaboration settings.
- Cross-tenant access settings if inviting users from specific organizations.
Because this is a service-side protection mechanism triggered by suspicious activity, only Microsoft support can clear the block and restore normal B2B invitation capability.
References: