Use Strong Two-Factor Authentication Mechanisms, such as TOTP

Two-factor authentication uses two independent means—which are usually something the user has and something the user knows—to establish a user’s identity and privileges. For example, you can authenticate users by requiring a TOTP token-code (something the user has) and a password or PIN (something the user knows). See Using Time-Based One-Time Passwords.