> ## Documentation Index
> Fetch the complete documentation index at: https://stytch.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Delete Verification Certificate

> Delete a verification certificate for SSO using the Stytch Next.js SDK

export const action_0 = "delete";

export const resource_0 = "stytch.sso";

export const organization = "Represents an instance or tenant in your application, typically mapping to each of your top-level customers.";

export const member = "Represents an individual end user's account within a given Organization, uniquely identified within that Organization by their email address.";

`sso.saml.deleteVerificationCertificate` wraps the [Delete Verification Certificate](/api-reference/b2b/api/sso/saml/delete-saml-verification-certificate) API endpoint. The `organization_id` will be automatically inferred from the logged-in <Tooltip tip={member}>Member's</Tooltip> session. This method cannot be used to delete verification certificates in other <Tooltip tip={organization}>Organizations</Tooltip>.

You may need to do this when rotating certificates from your IdP, since Stytch allows a maximum of 5 certificates per connection. There must always be at least one certificate per active connection.

<Note>
  **RBAC Enforced Method**

  This method requires a valid Session for a member with permission to perform the **{action_0} Action** on the **{resource_0} Resource**.

  Before using this method, enable **Member actions & organization modifications** in the [Frontend SDK page](https://stytch.com/dashboard/sdk-configuration). To learn more, see our [RBAC guide](/multi-tenant-auth/enterprise-ready/rbac/create-rbac-policy).
</Note>

## Parameters

<ParamField path="connection_id" type="string" required>
  Globally unique UUID that identifies a specific SSO `connection_id` for a Member.
</ParamField>

<ParamField path="certificate_id" type="string" required>
  The ID of the certificate to be deleted.
</ParamField>

## Response

<ResponseField name="connection_id" type="string">
  The `connection_id` that was deleted as part of the delete request.
</ResponseField>

<ResponseField name="request_id" type="string">
  Globally unique UUID that is returned with every API call. This value is important to log for debugging purposes; we
  may ask for this value to help identify a specific API call when helping you debug an issue.
</ResponseField>

<ResponseField name="status_code" type="number">
  The HTTP status code of the response. Stytch follows standard HTTP response status code patterns, e.g. 2XX values
  equate to success, 3XX values are redirects, 4XX are client errors, and 5XX are server errors.
</ResponseField>

<Panel>
  <RequestExample>
    ```jsx theme={null}
    import { useStytchB2BClient } from '@stytch/nextjs/b2b';

    export const DeleteVerificationCert = () => {
      const stytch = useStytchB2BClient();

      const deleteCertificate = async () => {
        const response = await stytch.sso.saml.deleteVerificationCertificate({
          connection_id: 'saml-connection-test-d89ff7a0-e86f-4b4d-b6a3-9a74d967528e',
          certificate_id: 'certificate-test-28f29eef-400f-4343-a83f-baf3eeba28c5',
        });
        console.log('Deleted certificate from:', response.connection_id);
      };

      return <button onClick={deleteCertificate}>Delete Certificate</button>;
    };
    ```
  </RequestExample>
</Panel>