Two-factor authentication is used to send an SMS verification code during the logon of a local user. The SMS verification code is used to authenticate the identity of the user for the second time. This reduces the security risks caused by account information leakage. This topic describes how to enable two-factor authentication.

Background information

After you enable SMS-based two-factor authentication, the local users who have not bound their mobile numbers cannot perform O&M operations. We recommend that you add the mobile numbers of the local users who need to perform O&M operations before you enable two-factor authentication.


  1. Log on to the Bastionhost system. For more information, see Log on to Bastionhost.
  2. In the left-side navigation pane, click Users > Authentication Settings.
  3. On the Authentication Settings page, click Two-Factor Authentication tab.
  4. Select Enable SMS-based Authentication for Authentication Method.Two-Factor Authentication tab
  5. Click Save.