You need to configure self-service password reset (SSPR) for a group of users who frequently travel and may need to reset their passwords while offline. These users require additional security measures such as multi-factor authentication (MFA) during the password reset process. How would you configure SSPR for this group while ensuring the additional security requirements are met?