An embodiment of the present specification provides a login authentication method. The method includes: first, receiving device information of a device in which a client is located sent in response toa startup instruction, and generating a first device token for the device information; Then, determining the device identifier corresponding to the device information, and establishing a first mapping relationship between the device identifier and the first device token, and sending the first device token to the client; Then, receiving a login authentication request sent by a client, the login authentication request including at least a first device token, a user name and a password; then, when the user name and password are verified, obtaining the device identifier corresponding to the firstdevice token according to the first mapping relationship, and obtaining the user identifier corresponding to the user name,the user identificater being generated correspondingly based on the user name successfully registered; then, returning a user identification to the client and generating an authorization record , the authorization record including at least the device identifier and the user identifier.