New user here facing the same problem.
And as someone else has already stated " Manual logout is not the same as vault time-out logout"
Neither lock or Log out options will require a 2FA.
We need a 3rd option for a real logout that requires a 2FA after Timeout (or not…)
Thank you,
