Hi
I'm looking for guidance - if any specified - on understand how OS level events interact with an enrolled FIDO2 authenticator.
For example these events can occur:-
1. A user who adds a new biometric (replacing a previous instance of the same biometric).
2. A user removes screen lock security.
How is this handled for a FIDO2 Platform Authenticator? Is the expectation for queries/checks to be made via OS APIs to detect this occurred and then relevant policy action taken e.g. to re-enroll?
Apologies if this is a relatively naive question - i've looked through a number of docs but found nothing explicit.