![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 87%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBC%3C/text%3E%3C/svg%3E)
25,124 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 82%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVD%3C/text%3E%3C/svg%3E)
Microsoft Entra ID requires each application (Enterprise Application) to have a unique Entity ID (Identifier) to prevent authentication loops and ensure proper application recognition during the authentication process. Configuring multiple applications with the same Entity ID is not supported, as it would create ambiguity and potential authentication failures.
If you need to deploy multiple instances of the same application (such as Shopify) with different configurations, you must assign a distinct Entity ID to each instance. This is a mandatory requirement for successful SAML integration in Entra ID.
However, if your goal is to have different applications with unique Entity IDs but require them to share the same audience value in the SAML assertion (for example, if the service provider expects the same audience for all instances), you can use the audience override feature in the claim's configuration. This allows you to set the audience value in the SAML token to match the expected value for all application instances, even though each app has a unique Entity ID in Entra.
Configure app multi-instancing.
To configure SAML SSO with audience override in Entra ID:
Sign in to the Microsoft Entra admin center as a Cloud Application Administrator.
Navigate to Identity > Applications > Enterprise applications.
Open the SSO-enabled enterprise app and go to the SAML single sign-on section.
Click Edit on the User Attributes & Claims panel.
Select Edit to open advanced options.
Configure the audience override as required and save your changes.
This approach ensures each application instance has a unique Entity ID, as required by Entra ID, while still delivering the expected audience value to the service provider during authentication.
If the answer is helpful, please click "Accept Answer" and kindly "upvote it". If you have extra questions about this answer, please click "Comment".