Answer Description
The three types of authentication factors are something you know, something you have, and something you are. In this case 2 factors are used: 1. The user must know the username and password. 2. The user must have a valid client side certificate.
Wikipedia
Multi-factor authentication is an electronic authentication method in which a computer user is granted access to a website or application only after successfully presenting two or more pieces of evidence (or factors) to an authentication mechanism: knowledge (something the user and only the user knows), possession (something the user and only the user has), and inherence (something the user and only the user is) It protects the user from an unknown person trying to access their data such as personal ID details or financial assets Two-factor authentication (also known as 2FA) is a type, or subset, of multi-factor authentication It is a method of confirming users' claimed identities by using a combination of two different factors: 1) something they know, 2) something they have, or 3) something they are
Multi-factor_authentication - Wikipedia, the free encyclopedia