Can it restrict only login in one device?

[maplewang]

For security purpose only allows customer login from the first device that they used name and password login.
It is different with two steps validation, I only allowed the first logined device to be used in the future.

[reddingwebpro]

Just to be clear are you wanting to completely lock all future logins to a specific device? You might want to consider the implications of this. The only two ways to really accomplish this is some sort of cookie or locking down by IP address. You might want to consider what happens when a user connects from a different location (home/work) from the same device, or what if the user changes their browser/clears cookies. If you're trying to do some sort of licensing lock down, you might want to go about it a different way.