title: “Enforce MFA for the entire organisation” description: “Make MFA mandatory for any login within the organisation.” audience: [“org_admin”] modules: [“seguridad”] estimated_minutes: 3 last_reviewed: “2026-05-03”

Enforce MFA for the entire organisation

Once enabled, users without MFA must set it up at their next login. No MFA, no entry.

TL;DR

Settings → Security → MFA → Require for entire organisation.

Steps

1. Settings → Security → MFA. 2. Enable Require MFA for entire organisation. 3. Set a grace period (recommended 7 days). 4. Confirm. Users receive email announcing the change. 5. After the grace period, logins without MFA are blocked.