Hi @rajivk,
Thank you for your response and clarification.
Unfortunately, it is not possible to prevent users from enrolling in alternative MFA factors if you have more than one factor enabled.
Meaning that it is not possible to enforce a specific factor without providing alternative methods to authenticate with MFA.
I hope this answers your questions.
Please let me know if you need help with anything else.
Thank you.