Known Issue: Retirement of Default Certificate affects SAML Single Sign On into Salesforce
Salesforce customers have received Product and Service notifications from Salesforce indicating that a certificate for proxy.salesforce.com is being retired. This change impacts some Salesforce customers who are using SAML Single Sign-On in a specific configuration (Service Provider Initiated).
Due to Okta's configuration as an Identity Provider and the manner in which Okta has implemented SAML, this change has no impact for Okta customers. No migration or mitigation efforts will be necessary to maintain service for either Service Provider or Identity Provider Initiated SSO flows.