If you are an Account Administrator on the Advanced Edition or above, you can enforce two-factor authentication (2FA) for all users who access your data.
To enable this feature, click on your profile image in the top-right, select Account & Billing, and click Security from the left side navigation menu. Click the Enforce Two-Factor Authentication checkbox and click the Save Changes button.
All of your users will receive an email notification about 2FA enforcement and will have 24 hours to enable it. If they do not enable the feature within 24 hours, they will be required to enable 2FA to access their account.
If a user is already signed in to their account, they'll see a banner at the bottom of the page with a countdown and link to set up 2FA.
If a user signs in immediately after 2FA is enforced, they'll only see a prompt to set it up (they can bypass it by clicking "Do this later").
After 24 hours, the user is forced to enable 2FA before they can access anything on Onehub. Any page the user goes to will redirect them to the 2FA required screen. Click the Enable Now button and complete the 2FA setup for an authenticator app or SMS.