Expired authentication keys force re-authentication

Users must re-authenticate with identity provider when authentication period expires, potentially disrupting access if users are unavailable or identity provider is unreachable

Set a custom authentication period that balances security with operational needs. Monitor keys approaching expiration using client metrics. Ensure users can reach the identity provider before keys expire to prevent access disruption.