I am trying to enforce MFA enrollment and MFA on our superadmin accounts in ADSelfService Plus. The superadmin accounts are a couple of user accounts synced from Active Directory. These user accounts are in their own OU in AD and do NOT have any other Policy Configurations applied to them EXCEPT the one I just created to specially enforce MFA. This is on purpose as I don't want any other policies applied to the accounts as I don't want them to have the ability to reset their own password.
When I go to configure Multi-Factor Authentication under Self-Service, I select my newly created Policy Configuration that applies to the superadmin accounts. Under MFA for Applications, I enable "MFA for ADSelfService Plus Login". Then under MFA Enrollment, I selected "Force users to enroll when they log in to the end-user portal." I then expect the next time I log off and log back in to ADSelfService Plus as the superadmin account, I will be prompted to enroll in MFA. Instead, I am given the following error: "Your account is not configured for Multi-Factor Authentication. Please contact your Administrator."
What am I doing wrong?!