For this test, we will already assume that you already know how to assign tokens to the user accounts in the Virtual Domain. You can use exactly the same authentication methods and tokens as you would for your domain users.
To ensure the non-domain joined machine receives the offline policies and automatically downloads the offline tokens, each account must be logged in to at least once whilst the machine is connected to the network.
Online Testing (Local Standard account)
Type your account credentials into the native Windows credentials UI...
If you have entered the local account password correctly you will the be presented with the Computer Logon Client UI, asking to input the second factor.
(For this example, it is prompting for a One-Time Password)...
If the OTP has been entered correctly, you will be logged in to the local account profile.
Online Testing (Local Administrator account)
If the local administrator account is exempted from MFA in the policy settings, signing in with these credentials through the native Windows credentials UI should log you in directly without an MFA prompt.