To ensure that Two-Factor Authentication (2FA) is enabled for all users, please go to Settings > Preferences > User Authentication. Here, you can check off ‘Require Mobile App Authenticator (TOTP) for all users’ in the Two-Factor Authentication Requirements section.
When enabled, all users in your organization will be required to set up two-factor authentication using a mobile app authenticator (such as Google Authenticator or Microsoft Authenticator). This does not apply to users who log in via SSO.