2FA is currently only available in a user account (as far as I’m aware). So each user needs to enable it and can decide if they want to. Some customers really want us to use 2FA for any web app. A simple solution would be for organisation accounts, that we move that setting to the org admin and can enforce it or enable it for all users that way.
2 Likes