Then the user will have to jump through the prove you are you hoops every time.
Got it, thx.
That is the likely scenario when dealing with VPN service. They, by design, reroute your internet traffic through servers and IP addresses that are not logical to your normal location and machine/local IP. So some authentication servers will complain and seek two-factor authentication. I”m not sure there is a total, sure-fire workaround