Computer Configuration > Administrative Templates > Google Chrome
Both
HKLM\Software\Policies\Google\Chrome
A list of origins of remote desktop client apps that may execute WebAuthn API requests that originate from a browsing session on a remote host. Any origin configured in this policy can make WebAuthn requests for Relying Party IDs (RP IDs) that it would normally not allowed to be able to claim. Only valid HTTPS origins are allowed. Wildcards are not supported. Any invalid entries are ignored. Example value: https://remotedesktop.google.com https://vdi.corp.example https://server:8080/