Force settings
FA for Confluence: U2F & TOTP Force settings designed for cases where you need to force the use of the plugin to other employees. In other words, if you enable these settings, users will not be able to log in to the Confluence without using the second authentication factor.
Below you can see a more detailed description of these settings:
None - if you choose this option, 2FA will not be compulsory for Confluence users. If you need to make it compulsory - use others below.
All - if you choose this option all your Confluence instance users will not be able to log in to the Confluence without using the second authentication factor.
Groups - this option allows you to choose а certain group of Confluence users who will not be able to log in to the Confluence without using the second authentication factor. You can select a relevant group of Confluence users using a special field marked by number 5. Such a setting can be useful if you have only several groups of users who work with sensitive data and the is no need to use an application for all rest Confluence users.
All except groups - this option allows you to choose а certain group of Confluence users who will be able to log in to the Confluence without using the second authentication factor when all other users will be forced to use application. Such a setting can be useful if most of your Confluence users work with sensitive data and only a certain group no need to use application.
A special field for entering the list of groups separated by commas. Example "Confluence-administrators, Confluence-users".
Take a look at the visual demonstration of the applied setting in the video below: