We have been using the above setup for Sophos MFA for months without issue. When a user needs to be set up on MFA, we generate a token for them and send them the QR code to scan into their app. We have done this to avoid any unauthorized setups of MFA, while also preventing login from users that are not enrolled in MFA. However, the option to display a token's QR code is no longer available as far as I can see, and so our current method no longer works. I would like to avoid re-enabling "Generate OTP" as it caused problems in our environment. Please let me know if you'd like any further clarification.
This thread was automatically locked due to age.