Android MyAccount passkey enrollment fails — FIDO_WEBAUTHN activation failure

amadari · June 10, 2026, 8:51pm

Org: ST (i—org)

App: org—st

Client IP from log: 9—6

System Log:

Event: Activate factor for user — FAILURE

Message: User failed to set up FIDO_WEBAUTHN factor

API error:

POST /idp/myaccount/webauthn

E0000001 — invalid clientData or attestation

errorId: oaeE017f6MuQyarMtNx7x2iRw (or latest)

Evidence:

- iOS MyAccount passkey enrollment WORKS on same org

- Android challengeMatches=true

- clientData.origin: android:apk-key-hash:wd4nse_3-vzDjfZ7PEyIy1KMaY9q4NXlaXWBOKhep3s

- assetlinks.json has org.healthfirst.android.member.st + apk-key-hash entries

- attestation rpIdHash matches identity-st.healthfirst.org

- Block synced passkeys: OFF

Question:

Why does FIDO_WEBAUTHN factor activation fail for Android native

MyAccount enrollment when iOS succeeds? Is Android native origin

supported for MyAccount WebAuthn on this org?

Topic		Replies	Views
Error: No passkeys available Get Help login-experience , login-prompt-new-experience	2	2648	December 12, 2023
Disallowed_useragent Get Help login-experience , login-prompt-new-experience	0	547	October 27, 2023
Not able to sign up using email and password for embedded login for Android Mobile SDK Get Help lock , auth0 , login	10	2345	June 24, 2022
Social Login using Android SDK AuthenticationAPIClient Archived android-auth , android-client	4	4685	July 25, 2019
Auth0 Android SDK - Passwordless authentication is using deprecated oauth/ro endpoint Archived auth0 , android , api , passwordless	4	3401	February 14, 2020