Currently, most network users need to use user name and password to log on for authentication. Passwords used in systems, such as email system, online banking, are most static. But static passwords show more and more security risks with the development of hacking. In view of the security risks of using static passwords to authenticate users, this paper gives a solution to implement two-factor authentication by using RSA token. A set of corresponding realization processes is proposed as well. Using dynamic password given by RSA can further verify user identity to improve the reliability of authentication.