Can someone confirm that if Multi Factor authentication if enabled at team level in Bitbucket and if the every user hasn't performed the changes at user level which is required to have MFA enabled, then will the user be able to enable it later at user settings even if team level MFA is already enabled.
Yes, each user is always able to go into their account settings and enable or disable 2FA at any time. By requiring 2FA for your team account you're controlling access to that account's repositories. Unless users have 2FA enabled, they won't be able to access those repositories even if they have enough privileges.
You can require that the users with access to private repositories or other private content are only able to see the content if they've enabled two-step verification. If they haven't enabled two-step verification, users with access will see a message that prompts them to enable it. In addition to being unable to see this content, users won't be able to clone, push, or pull a private repository either.
Hope this helps. Let me know if you have any questions.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.