Summary:

In Jira, users have the option to enroll in two-step verification for basic authentication by navigating to Profile > Two-Step verification, then completing the rest of the setup instructions.

If an organization needs to enforce this for all users on their site, they are forced to add a JVM argument then restart services for the changes to take affect

Suggestion:

It would be nice for administrators to be able to manage their authentication policy from the Administration Settings in Jira.

In turn, no restart would be required for the policy changes to be applied to users on their next login.