We have updated our SSO configuration tool in the Admin Console to support self-serve certificate management.
This will allow all organizations leveraging a SAML SSO integration to easily review, rotate and delete the security certificates necessary to validate assertions from Identity Providers (Okta, Azure AD, OneLogin, Ping,...).
On top we will shortly also improve our notification system when an active certificate is about to expire to give admins a heads-up that a certificate rotation is required.
You can find more details here:
Behind a Feature Flip