diff --git a/CHANGELOG.md b/CHANGELOG.md
index a2817c07e..db67a85aa 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -18,6 +18,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Improved the language localization for German (`de`)
 - Upgraded `ionicons` from version `7.4.0` to `8.0.10`
 
+### Fixed
+
+- Fixed a Biometric authentication issue related to matching passkeys
+
 ## 2.178.0 - 2025-07-05
 
 ### Changed
diff --git a/apps/api/src/app/auth/web-auth.service.ts b/apps/api/src/app/auth/web-auth.service.ts
index c2223e716..abe772270 100644
--- a/apps/api/src/app/auth/web-auth.service.ts
+++ b/apps/api/src/app/auth/web-auth.service.ts
@@ -60,8 +60,8 @@ export class WebAuthService {
       timeout: 60000,
       authenticatorSelection: {
         authenticatorAttachment: 'platform',
-        requireResidentKey: false,
-        userVerification: 'required'
+        residentKey: 'required',
+        userVerification: 'preferred'
       }
     };
 
@@ -91,6 +91,7 @@ export class WebAuthService {
         expectedChallenge,
         expectedOrigin: this.expectedOrigin,
         expectedRPID: this.rpID,
+        requireUserVerification: false,
         response: {
           clientExtensionResults: credential.clientExtensionResults,
           id: credential.id,
@@ -152,12 +153,7 @@ export class WebAuthService {
     }
 
     const opts: GenerateAuthenticationOptionsOpts = {
-      allowCredentials: [
-        {
-          id: isoBase64URL.fromBuffer(device.credentialId),
-          transports: ['internal']
-        }
-      ],
+      allowCredentials: [],
       rpID: this.rpID,
       timeout: 60000,
       userVerification: 'preferred'
@@ -200,6 +196,7 @@ export class WebAuthService {
         expectedChallenge: `${user.authChallenge}`,
         expectedOrigin: this.expectedOrigin,
         expectedRPID: this.rpID,
+        requireUserVerification: false,
         response: {
           clientExtensionResults: credential.clientExtensionResults,
           id: credential.id,