Allow End User to setup MFA via a QR-Code during login if no MFA setup
Allow end users to setup Google/Microsoft MFA during login if no MFA setup via QR-Code. Administrator should not have to set this up for end users. We are on a cloud hosted instance using the Internal security database.
This. A thousand times.
Especially given all the recent removal of the majority of customisation features under the banner of "we're making things more secure", the current process for setting-up app-based MFA/2FA is horrendous.
No one except for the user themself should EVER see the MFA/2FA Secret Key. The fact that an SC admin has to both generate one and then manually enter it into the admin portal is beyond awful.
ConnectWise/ScreenConnect clearly have the ability to create valid secret keys, since you do so in the "MFA Setup Process" documentation. This just needs to be built-in to the user login process.
It's 2025... app-based MFA is not new anymore.