The MFA policy can be used to enforce MFA and specify the MFA types. Each MFA type can be set as required, optional, or disabled. When multiple MFA types are set to be required, SSW will prompt the user for MFA in the order listed in the UI. For example, TOTP will be prompted first if it is set to be required.
