Configure the Passkeys (FIDO2 WebAuthn) authenticator groups

Create groups of Okta-recognized Passkeys (FIDO2 WebAuthn) authenticators and use them in policies. This simplifies the task of requiring your users to authenticate with specific Passkeys (FIDO2 WebAuthn) authenticators when you create policies.

1. In the Admin Console, go to SecurityAuthenticators.

2. On the Setup tab, click Actions in the Passkeys (FIDO2 WebAuthn) row, and then select Authenticator groups.
3. To add an authenticator group, click Add group.
4. Enter the group name and add Passkeys (FIDO2 WebAuthn) authenticators to the group.
5. Click Add group.

To edit or delete an authenticator group, find it in the Authenticator groups list, and then click Actions. Click Edit or Delete.

Before you can delete an authenticator group, you must remove it from all authentication enrollment policies that include it. See Edit an authenticator enrollment policy.