Within the VCD Certificates Library (under Administration > Certificate Management), the expired SAML (Security Assertion Markup Language) signing/encryption certificate cannot be deleted.

VMware Cloud Director 10.6.x

The expired certificate is used by the "System" consumer, even though SAML is not configured.

1. In the Provider UI, select Administration.
2. Under the Identity Providers section, click SAML.
3. On the SAML configuration page, click REGENERATE CERTIFICATE.
4. Delete the expired SAML certificate from the Certificate Library.

Refer to Notification email is sent to all Tenant Administrators about SAML certificate expiration for Organizations where SAML is not configured for more information.