2FA for portal access and more complex passwords

Would be nice to have 2 factor authentication to login to the portals. I would say all portals, CST and End User Portal. Also the end user portal password can only consist of numbers which is a security concern for some of my prospect clients.