MacOS Passkeys for MFA not working

[rmartine-ias]

When I run saml2aws login and choose the MFA option FIDO WebAuthn MFA authentication - iCloud Keychain (abunchoflettersgohere), I get the following error:

Error authenticating to IdP.: error verifying MFA: tried all MFA options: The provided key handle is not present on the device, or was created with a different application parameter.

Using yubikeys for FIDO WebAuthn MFA works for me in saml2aws. Using the passkey I have saved works for browser-based okta authentication, but not in saml2aws. The passkey is stored in Passwords.app.

[leon-hyper]

up, we also have issues with passkeys, but on Google MFA

[mateuszdrab]

I am trying to login with a passkey to KeyCloak and I don't even get such option.