I would like to make 2FA mandatory for staff. Yet, I would not like to lock out staff members who have not set it up yet. I would like new staff members to only have moderating functionality and admin access available after 2FA is setup. A notice to explain this would help guide users. However that can also be setup by the admin.