You need to reduce the amount of time it takes for the Site2 users and the Site3 users to log on to their client computer by using their UPN
You need to export the token-signing certificate from ADFS1, and then import the certificate to ADFS2 and ADFS3