Hi,

We would like to request the ability for domain administrators to enable and manage two-factor authentication (2FA) for users within their domain. Currently, users can enable 2FA themselves, but some of our customers require that domain administrators be able to enforce this security measure for compliance and policy reasons. We would appreciate the ability to enable or disable 2FA for specific users or enforce it across all users, with a reporting feature to track who has 2FA enabled. Additionally, the option for domain administrators to reset 2FA settings for users who lose access to their authentication method would be beneficial.

This feature would greatly improve security and assist with meeting compliance requirements for many of our customers.