Can i have resource or doc to automate saml certificate renewals and OIDC token renewals? Hope we cant do this through powershell. Please clarify
The OIDC token signing keys are generated manually with a begin date and an expiry date. The process for renewing is currently manual. This process must be automated, by triggering a new set of keys via the Microsoft Graph API.
The SAML message/assertion signing certificate is currently generated as a self signed cert with an expiry of 1 year. The process for renewing must be automated, generating a certificate and uploading it via the Microsoft Graph API.