I was recently asked if MFA was leveraged for authentication on endpoint devices. My gut reaction is that given MFA is something you have, know, are, and you need to have the laptop to log into it and you need to know the password that laptops are inherently MFA. Is this incorrect?
EDIT: I'm realizing that my wording for this question was poor. The question specifically was "Is MFA enabled to login to endpoint devices?" To that point, they're specifically talking about accessing the endpoint device, not things which that device can access.