![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 11%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
25,080 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 68%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Hi @BH,
Based on your query, you would like to use same entity ID for multiple instances of same application.
Entra ID would like to have a unique entity ID for all the applications to make sure there is no authentication loops or issues with application recognition while performing the authentication. When you have same entity ID for all the application, there will be an issue with identification of the application and will not be able to proceed with authentication at any point of time. This is the reason Entra make sures to have unique entity ID provided by the application for each application object entries. In order to configure these applications, you need to make sure to have different Entity ID for each instance of the application.
But if you would like to use multiple identifiers (Entity ID) but would like to have same audience for all the three instances of the application, you can use audience override for the claims of the application. This helps you in having same audience value for three applications when you retrieve a token for your application, here is the Microsoft document which would help you in performing the same: Configure app multi-instancing.
If you are using IDP initiated SSO with Entra, here are the steps you can follow:
- Sign in to the Microsoft Entra admin center as at least a Cloud Application Administrator.
- Browse to Identity > Applications > Enterprise applications.
- Open any SSO enabled enterprise app and navigate to the SAML single sign-on blade.
- Select Edit on the User Attributes & Claims panel.
- Select Edit to open the advanced options blade.
- Configure both options according to your preferences and then select Save
I hope this information is helpful. Please feel free to reach out if you have any further questions.
If the answer is helpful, please click "Accept Answer" and kindly "upvote it". If you have extra questions about this answer, please click "Comment".