...
As an extra layer of security, two-factor authentication is available for CMS User logins. When it is active for a User, they are required to enter their password and verify the login through a PIN (passcode) provided by an authenticator app on their personal device. This two step procedure is designed to ensure that the person logging into the CMS is the owner of that account.
There are two ways to activate two-factor authentication for a User. CMS Administrators can enable it for that User so that it is is mandatory (forced) requirement. Or the User can decide to opt-in voluntarily and initiate set up themselves.
...