Add the ability to require that all Bitrise accounts within an organization use 2FA, in order to effectively secure the environment.
As a manual workaround, a column in user management indicating which users have 2FA enabled would be a mild improvement β far from ideal, but at least would provide some level of confidence in the current security status.
From a security standpoint, this is a requirement for our organization. I see that SSO is a potential alternate route for Enterprise users, but itβs disappointing that a core security feature like mandatory MFA would be locked behind a higher plan tier.
Known past tickets: Enforce 2fa (two factor authentication) within organisation, opened in 2017, closed in 2021 without clear resolution.