Increasingly by the hundreds now, I am receiving requests to enable MFA for on-prem customers. Given the Microsoft AD has no support for MFA on-prem, when is Microsoft to dismantle the antiquated password features of the AD like password complexity and rotation and implement best-practices MFA options and known vulnerable password hash checking for it's latest on-prem server OS's without resorting to a 3'rd party or moving entire networks to more dangerous Azure cloud resources?