Multi-Factor Authentication (MFA/2FA)

You can enforce multi-factor authentication for users by going to Settings > Global Security/SSO > Global 2FA.

Enabling multi-factor authentication

Turning on Global 2FA will require all users to have multi-factor authentication configured in order to log in.  After enabling, their first successful login will have a follow-up step asking them to set up their MFA process (either via email or OTP).  All subsequent logins will prompt users for their MFA code after a successful username/password challenge.

You should not enable MFA if you are using SAML/SSO.