Microsoft Authenticator as separate second factor
At the moment people can use Google Authenticator TOTP codes with their Microsoft Authenticator, yet Microsoft Authenticator offers (maybe?) some advanced methods, as it also supports push notification where the user gets a popup on his phone once you try to login (similar to Duo). So we should see if its possible to implement there a certain API or similar to integrate MS Authenticator better.