We have used the following policies in privacyIDEA during our tests.
| policy type (scope) | policy name | policy value |
|---|---|---|
| enrollment | webauthn_authenticator_attachment | either |
| enrollment | webauthn_authenticator_attestation_form | indirect |
| enrollment | webauthn_authenticator_attestation_level | none |
| enrollment | webauthn_public_key_credential_algorithms |
|
| enrollment | webauthn_relying_party_id | passkey.grnet.gr |
| enrollment | webauthn_relying_party_name | Passkey test |
| enrollment | 300 | |
| enrollment | webauthn_user_verification_requirement | discouraged |
| webui | default_tokentype | webauthn |
| authentication | webauthn_allowed_transports | usb ble nfc internal cable hybrid |
| authentication | webauthn_timeout | 300 |
| authentication | webauthn_user_verification_requirement | discouraged |