It would be desirable if 2FA could not only be set for the entire company, but could be limited to a role or to a vault. Because not everyone in the company has such important passwords that 2FA would be necessary.