It's great that xero supports MFA and I would like to query which users have MFA enabled (or more importantly which don't) and import into our SOC so we can ensure that all accounts are protected.

Given how big a target a finance platform like Xero is for business email compromise and phishing scenarios and how critical MFA is in preventing these attacks - being able to collect this information and easily catch unprotected accounts is very useful.