"The option that's being pushed at the moment is a Microsoft solution that relies on using either a smartphone app, texts to a mobile or e-mails to a non-corporate account."
That's highly ungood. If companies enable 2FA it should be in a way that doesn't require the use of employee's personal devices or services.