I might not be seeing it but it seems that MFA can't be enforced globally for all users. Why isn't this just on by default?? It's 2022.