Bahmni uses basic authentication (username, password) from OpenMRS so far. However, it is optimal to have additional security mechanisms to protect users from fraudulent acts. Hence 2FA was introduced in Bahmni. This feature is optional for an implementation. When this feature is enabled then the user will be authenticated with username and password first and on success, the user will get an SMS with an OTP to his/her registered mobile. The user has to authenticate with the OTP before proceeding to use the system.
Where is it Used?
Every user who logs in to the system with 2FA enabled in the facility.
This feature helps prevent fraudulent access by adding another layer of user authentication to the application.