Currently, users have to enable and configure MFA and can disable it. Add a feature to require MFA be enabled for a user account at account creation and require the user to configure it as part of their account registration.