. . . . "If your organization uses two-factor authentication for all users, such as smart cards or biometrics devices." .