Hi ​@nw-admin, welcome to the Box Community! As the admin, you need to configure 2-step login verification for external collaborators first. After you enforce 2FA, external collaborators must enroll in 2FA with Box to access your enterprise's shared content.

1. Go to Admin Console > Enterprise Settings > Security.
2. In the Multi-Factor Authentication section, under External Users, select Configure or Edit Configuration.
3. In the 2-Step Verification for External Collaborators dialog box, select whether to disable 2-step login, enable 2-step login for all external collaborators, or enable for - or except for - a defined set of external collaborators. If you enable 2-step login, select when it will be enforced. For more details, see the External Collaborators section in Enterprise Settings: Security Tab.
4. Click Save. 
5. Use MFA to authenticate this change, using the method described in Multi-Factor Authentication Required for Admin Console Critical Actions.
6. At the top of the page, click Save.
    

Check out Configuring Multi-Factor Authentication to learn more.

External collaborators who are already enrolled in 2FA with Box, or who are using an SSO provider to access their Box account, can continue to access the shared content.

Please have them check: Enrolling in 2FA for External Collaboration for instructions.​​​​

Let us know if you have any other concerns. ​​​