There should be an option for users to enroll in MFA - it should not only be ‘Always’ or ‘Never’ like it is now.
Most times when MFA is an available on the Internet, it’s optional, not forced upon the user. Why is this not the case in Auth0? The closest thing to this normal behavior is the ‘Adaptive MFA’, but that’s not optional either.
You can do this, but currently you need to build your own app to handle it. Use an Action to redirect users to a microsite that gives them the option to enroll or continue w/o enrolling. Or build it into a user preferences / security portal. This is worth building anyway, to give users the ability to manage their Auth0 profiles and security.
