Hello.
We’ve had WebAuthn with FIDO Device Biometrics (webauthn-platform) enabled in our tenant but now want to switch to Passkeys for a more convenient experience.
We’ve tested them but noticed that users are presented with the MFA webauthn-platform credentials when Passkey autofill is enabled or when they click the Passkey button. This results in bad user experience since the MFA webauthn-platform credentials they have from before are not registered as Passkeys in Auth0 and therefore result in “Passkey authentication failed”.
Is there a recommended way to migrate from WebAuthn with FIDO Device Biometrics (webauthn-platform) to using Passkeys?
Maybe a way to convert the webauthn-platform credentials to passkeys? Or some way to remove them from the user’s devices so they start fresh?
Changing the Relying Party Identifier to a less strict one is an option but I would like to avoid it.