The other answer is incorrect you can do this with an Access Policy.

In Zero Trust > Access > Policies create a new access policy, but set the Action as 'Service Auth'. You then also need to set an Include policy (this can be "Everyone"). Doing this will exempt applications using this policy from the default identity requirement (usually email OTP if you haven't hooked up an identity provider).

I would however consider adding some restrictions even if you don't use an identity provider via CloudFlare, such as only including countries you expect to access from or locking down to public IPs.