Make sure to set up a Security Scan for each domain in your Adobe Commerce or Magento Open Source installation. Also, visit the Security Center and join the Security Alert Registry for the latest news about potential vulnerabilities and best practices.
Stores that have enabled Adobe Identity Management Services (IMS) authentication have native Adobe Commerce and Magento Open Source 2FA disabled. Admin users who are logged into their Commerce instance with their Adobe credentials do not need to re-authenticate for many Admin tasks. Authentication is handled by Adobe IMS when the Admin user logs into their current session. See Adobe Identity Management Service (IMS) Integration Overview.