Can the same Azure Active Directory Tenant and SharePoint site be used for multiple Vaults, even if they belong to different Vault Applications?
Yes, however with the following considerations:
Customers should have separate Apps, Users, and Sites for Sandbox versus
Production. This is to ensure that sandbox accounts do not have access to Production
data. Within an environment level (e.g. all Production) users can re-use a single App,
Document Library, and service user. The benefit of using a single document library and
service account user for each Vault is that it is easier to set up and maintain each
additional Vault, without the need to request changes from Azure Administrators. The only
caveat is if a specific Vault has unique security, operational, or compliance
requirements. If the customer operates each Vault quite differently with unique security,
operational or validation requirements, it is recommended to use separate document
libraries. This would allow users to configure different validation testing or operational
procedures (e.g. SharePoint security tools) for each Vault. The integration settings are
specified at the Vault level, so users can have separate Document Libraries for each Vault.