Recently asked to look at adding MFA to plone logins and was surprised to see plugins like collective.googleauthenticator or collective.smsauthenticator not updated since plone 4.
I had also thought there was a plugin to at least allow login via email OTP but couldn't find anything yet.
Just wondering what most people do when they want to increase security of logins?
Are most handing off auth to something else like SAML2/OIDC at the point where they want to add more security?
Also noticed this recent topic - TOTP via Passlib and PAS. Is this a good solution?