The AWS metadata has a validity associated with it. You need to re-import the metadata before the license expires. To re-import the metadata, perform the following steps:
Click Devices > Identity Servers > Edit > SAML 2.0.
Under Trusted provider, click AWS service provider.
In Metadata, click Reimport.
Specify the following:
Provider Type: Select General.
Source: Select Metadata text.
Name: Name for the service provider is displayed by default.
Text: Fetch the metadata from: https://signin.aws.amazon.com/static/saml-metadata.xml. Remove the string content <KeyDescriptor use="signing"> .... </KeyDescriptor>. Copy this edited metadata and paste it in Text.
Click Next.
Confirm metadata certificates, then click Finish.
Update Identity Server.