In the official documentation it stated that “Users can only enroll one device per type using WebAuthn with Device Biometrics (one phone, one tablet, one laptop/desktop). If a user wants to enroll another device of the same type, the first device must be unenrolled.” But why am I able to enroll my Android phone and Iphone under the same user account.
Please enlighten me how auth0’s device recognition works and how it behaves depending on the device OS.
Welcome to the Auth0 Community!
To clarify, the documentation’s “one device per type” rule refers to the operating system (OS) and browser profile rather than the physical form factor (like a “phone”).
Because an Android phone and an iPhone run on completely different operating systems, Auth0’s device recognition detects them as two distinct platform types using the browser’s User-Agent. This is why you can successfully enroll both under the same account.
Please let me know if you have any further questions!
Best regards,
Remus