I am deploying full passwordless sign in in many On Prem AD, AAD and hybrid environments in meantime. When using FIDO sign at a AAD joined Windows machine for User sign in and the FIDO key used has two or more AAD identities, Windows is always signing in with the last identity added.
Adding FIDO key to user 1 via MySignins
Adding FIDO key to user 2 via MySignins
Sign into Windows Computer with user01 and use Sign in via Security Key
Windows is signing in as user02
This is 100% reproducable. Also I often see the sign in screen switching to "Other User", even if only one Identity is deployed on the Security Key.
I wonder if this is a bug or a feature or I am doing anything wrong?