For added security, an account admin can require two-factor authentication (2FA) for all account users.
In the NS1 portal, click the arrow next to your username in the upper-right corner, and select Account Settings > Security Settings.
Click the toggle next to Enforce 2-factor Authentication for all users to enforce 2FA for all users associated with the account.
If someone loses their 2FA key, an admin (or another user with the necessary permissions) can re-enable it by going to Account Settings > Users & Teams and editing the individual user settings.
If an admin can no longer access the authenticated device, they must contact firstname.lastname@example.org from the email address associated with your account.