LDAPS certificates with a short expiry date will more frequently, show on vCenter, a triggered alarm regarding LDAPS certificate expiry: "Identity Source LDAP Certificate is about to expire"

vSphere 8.x
VCF 9.x

LDAPS certificates are managed by the domain administrator.
It is not possible to automatically renew the LDAPS certificate when configured with identity Source in vCenter Single Sign-On (SSO). 
For renewal, to avoid having to renew so frequently, the cert will either need to be renewed manually as per steps from KB 371578.
Or the validity of the certificate will need to be increased for a longer period of time.

For information on configuring the LDAP server to use SSL, see the Microsoft article LDAP over SSL (LDAPS) Certificate .