Hello @Ritesh Sharma When it comes to SSO using SAML, it’s clear that you need to manage and renew the certificates. This is because SAML relies on certificates for signing and encrypting assertions. For OpenID Connect and OAuth, the situation is a bit different. These protocols don’t inherently require certificates for their operation. However, they often use HTTPS for secure communication, which does require an SSL/TLS certificate.
This certificate needs to be managed and renewed to ensure the secure operation of your service. In terms of the certificate you see under app registration, it’s likely related to the SSL/TLS certificate for securing the communication. If auto-renewal is enabled, it should renew automatically. However, if auto-renewal is not enabled, you would need to manually renew the certificate. It’s always a good practice to have a process in place to track the expiration and renewal of your certificates to avoid any service disruption.
If you’re unsure, it might be best to reach out to your service provider or check their documentation for specific details.
Remember, the security of your application and the data it handles is paramount, so ensuring your certificates are up to date is crucial.
I hope this information helps you for your security journey.
Have a great (and secure 🛅) weekend.