I was looking at the admin settings and couldn’t find any options for MFA other than TOTP codes (unless I’m missing something). If this feature isn’t currently implemented, I believe it would be beneficial to add more MFA choices, such as hardware tokens (e.g.,FIDO2 via YubiKey).