Dear Apple,
We are very nervous to discover that, in the next Public Beta of macOS, it's not feasible any more to use Touch ID as a platform authenticator without using iCloud Keychain.
If a local stored and iCloud Keychain stored WebAuthn credential registered within Safari are indistinguishable, we had to ban all Safari users out in the intranet of our enterprise.
Do you have any .mobileconfig provision / enterprise provision to make TouchID work again as a WebAuthn authenticator without using iCloud Keychain in the next version of macOS just like now?
--
Best regards,
Wang Kang
Alibaba Group