Solved

Two factor authenication for Windows Server 2003 RDP connection.

Posted on 2008-10-06
2
1,019 Views
Last Modified: 2013-11-21
We are trying to become PCI certificated and have hit a road block. We have isolated our stations so they can not talk to any other application/server besides there local Domain Controller/Application server. We are looking for a way to use Two Factor Authentication to gain access to these remote server using RDP. These servers are mostly Windows Server 2003 with a couple of Windows Server 2008 in the mix.

Has anyone found any solutions for Two Factor authentication and RDP that is fairly low cost or free. From what I can see nothing is build in to a Windows 2003 or 2008 Server do to this. A couple of solutions I have found are Rohos Logon Key http://www.rohos.com/ and PhoneFactor http://www.phonefactor.com.

Any other ideas?
0
Comment
Question by:ruffalocody
2 Comments
 
LVL 63

Assisted Solution

by:SysExpert
SysExpert earned 250 total points
ID: 22656075
I would use a RADIUS server and VPN

There are some free versions but you still need tokens.

Cryptocard.com has cheap tokens and a relatively cheap RADIUS server


I hope this helps !
0
 

Accepted Solution

by:
ruffalocody earned 0 total points
ID: 22656235
The RADIUS and VPN may work. The only questions is does PCI allow for dual-tunneling when accessing these remote resources? Currently our operators and support staff have to access local resources (file servering/local intranet resources) while on the remote servers.

0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now