Two factor authenication for Windows Server 2003 RDP connection.

Posted on 2008-10-06
Medium Priority
Last Modified: 2013-11-21
We are trying to become PCI certificated and have hit a road block. We have isolated our stations so they can not talk to any other application/server besides there local Domain Controller/Application server. We are looking for a way to use Two Factor Authentication to gain access to these remote server using RDP. These servers are mostly Windows Server 2003 with a couple of Windows Server 2008 in the mix.

Has anyone found any solutions for Two Factor authentication and RDP that is fairly low cost or free. From what I can see nothing is build in to a Windows 2003 or 2008 Server do to this. A couple of solutions I have found are Rohos Logon Key http://www.rohos.com/ and PhoneFactor http://www.phonefactor.com.

Any other ideas?
Question by:ruffalocody
LVL 63

Assisted Solution

SysExpert earned 1000 total points
ID: 22656075
I would use a RADIUS server and VPN

There are some free versions but you still need tokens.

Cryptocard.com has cheap tokens and a relatively cheap RADIUS server

I hope this helps !

Accepted Solution

ruffalocody earned 0 total points
ID: 22656235
The RADIUS and VPN may work. The only questions is does PCI allow for dual-tunneling when accessing these remote resources? Currently our operators and support staff have to access local resources (file servering/local intranet resources) while on the remote servers.


Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question