It would be awesome that enforced two-step verification would be available for unmanaged accounts too even without Atlassian Access.

As many company, we are working with subcontractors that have their own domain that we can't manage.

As we need a secure connexion on our instance for every user, it would be a great security improvement to be able to enforce two-step verification for every user.

In the meantime, it makes us unable to be compliant with our security commitments.