How to protect with MFA a specific endpoint (same as the administrator dashboard is)?

When an already authenticated user clicks the Admin button in Okta, she’s challenged with a second factor (Oka Verify).

The same way, we would need in our application to challenge an already authenticated user to provide a second factor when he tries to perform a specific action, like accessing a protected endpoint.

Is it possible to do that through configuration or calling some Okta API?