What is MFA and how does it work?
MFA adds another layer of security to your login process by requiring users to enter two or more pieces of evidence — or factors — to prove they’re who they say they are.
By tying user access to multiple, different types of authentication factors, it’s much harder for a bad actor to access your Heroku environment. For example, even if a user’s password is stolen, the odds are very low that an attacker will also be able to guess or hack a code from the user’s authentication app.
To learn more, visit the Multi-factor Authentication article on Dev Center.