After upgrading my Operating System to Windows 11 23H2, I discovered that users are forced to choose between Mobile and Security Key when registering a new credential and making assertion even if the Authenticator Attachment is set to 'cross-platform'.
Is it possible for Windows WebAuthn client to recognize that a credential was registered using a USB security key previously? Next time when the user wants to authenticate to the website, the WebAuthn client can directly recognize that it needs to send the credential to a USB security key thus preventing the need for the user to select which device they want to authenticate with.
I've tried to add 'usb' to the Authenticate Transport Enumeration. However, the behavior of the WebAuthn Client stays the same.
IMO, the extra step that the user needs to do makes the experience less user-friendly. Is there any way to improve this?