What are the best practices for multi-factor authentication (MFA)?

- Decide MFA based on your user base - If possible, keep multiple MFA options so that users can choose as per their convenience - If using a vendor, make sure they follow security standards and provide up to date MFA options - Educate users on need of MFA and how to use them (may be videos or support docs)

I have been using two-factor authentication for my application for a long time, based on the TOTP and HOTP OCRA algorithms. Since these security systems are quite reliable and resistant to cryptographic attacks. And also have a number of other advantages. By the way, I can recommend you a proven totp generator https://2fasolution.com/ , which works reliably and has a fairly simple and intuitive interface. So you can quickly figure out how everything works here.