How to enable "Biometric / Security Key Authentication Policy" at the Symantec VIP User Group level.

Biometrics / Security Keys Authentication Policy allows your end users to use FIDO-enabled biometric credentials or security keys rather than security codes for second-factor authentication.

When a user registers a FIDO-enabled biometric credential or security key, it becomes the default authentication method for the user. When a user authenticates to a website, the user is prompted to insert a security key and press the button, authenticate with a passkey, or perform a biometric authentication through the mobile device. The credential interacts with the authenticating website directly to authenticate the user.

Biometrics and security key authenticators take precedence over IA, device fingerprint, and Remembered Devices. If this policy is enabled, end users can no longer register new Remembered Devices in My VIP. Below Screen shots describe how you can enable this policy at the Group level.