Many 2FA systems do not require entering the time based code from the authenticator app unless the login is from a device not previously authorized by the authenticator. Thus, the typical use would be when a new device/browser logs in for the first time, 2FA is required. Then, if you log out and...