The computer logon agent policy defines how 2FA or MFA should be enforced for users who log in using the computer logon agent.
The policy also allows the administrator to either allow or deny logon access to users with specific IP addresses, to specify what actions to take if the agent is unable to contact the DualShield server, and to allow/deny access via specified credential providers.