When creating a new SAML application on Microsoft Entra ID following KB Migrate Enterprise Identity Federation Broker for VMware Tanzu Platform to Symantec VIP Authentication Hub, the following error shows up: "Please enter an identifier which is unique within your organization.".

The solution is to append #some-unique-string to the audience URI (Example: https://access.broadcom.com/default#1234) which will work for IdP-initiated flows only (does not work for SP-init) and finish the remaining steps mentioned in KB Migrate Enterprise Identity Federation Broker for VMware Tanzu Platform to Symantec VIP Authentication Hub.

Note: IDP Initiated flow login = means user login via Identity provider which is Microsoft Entra ID and SP Initiated flow = means users login using service provider which is the Tanzu Cloud Service website directly.