I was listening to a Disney+ podcast today they were talking about wanting Disney to add 2FA and also saying that they want it on not only the login level but also as a barrier for access to profiles classified as adult profiles so that the kids can’t access it. I’m wondering if 2FA is capable of being integrated like that?
Why not? 2FA is a form of authentication. A web site can [re]authenticate you whenever they feel the need.
2FA is 2FA. The site or application designer can require it on login or when performing certain actions within the site or app, or both, or neither.
I work in many cyber security tools throughout the day and they often require 2FA when performing certain actions inside the tool, even though I had to 2FA to login.