Hmm I don't think everything requires two factor auth or MFA. I also wouldn't want to trust one specific autheticator provider to be the sole provider to be used for example Yubikey. Btw it is really easy to steal a Yubikey from a co worker or anyone who has one. Not that I've done this, but we had a co worker who tried to prove a point by hiding Yubikeys of people that left them lying around the desk.