Hi again!
Exactly as @mrksbnch has stated and showed via the code, you will need to bypass/enable the MFA whenever the refresh token transaction protocol is used for authentication.
You can read more about that in our documentation.
Kind Regards,
Nik