A user is unable to sign in to an application. When reviewing the system logs for the user, the following error message is displayed:

No confirmed authenticators for the enabled factors

• Multi-factor Authentication (MFA)

• WebAuthn

• Email Factor

This error occurs because the WebAuthn factor is tied to a specific device and browser. It requires a secondary factor to be enabled and verified for initial enrollment or when using a new device. In this scenario, the only other enabled factor is Email. The Email factor cannot be used for MFA until the user verifies the email address. Since the email is unverified, the system cannot offer a valid authenticator, resulting in the error.

To resolve this issue: 

• Verify the email address associated with the user account. NOTE: As soon as the user verifies the email, the authentication flow can be completed.

• For additional configuration details, refer to Configure WebAuthn with Device Biometrics for MFA.