Two factor authenication for Windows Server 2003 RDP connection.

We are trying to become PCI certificated and have hit a road block. We have isolated our stations so they can not talk to any other application/server besides there local Domain Controller/Application server. We are looking for a way to use Two Factor Authentication to gain access to these remote server using RDP. These servers are mostly Windows Server 2003 with a couple of Windows Server 2008 in the mix.

Has anyone found any solutions for Two Factor authentication and RDP that is fairly low cost or free. From what I can see nothing is build in to a Windows 2003 or 2008 Server do to this. A couple of solutions I have found are Rohos Logon Key http://www.rohos.com/ and PhoneFactor http://www.phonefactor.com.

Any other ideas?
ruffalocodyAsked:
Who is Participating?
 
ruffalocodyConnect With a Mentor Author Commented:
The RADIUS and VPN may work. The only questions is does PCI allow for dual-tunneling when accessing these remote resources? Currently our operators and support staff have to access local resources (file servering/local intranet resources) while on the remote servers.

0
 
SysExpertConnect With a Mentor Commented:
I would use a RADIUS server and VPN

There are some free versions but you still need tokens.

Cryptocard.com has cheap tokens and a relatively cheap RADIUS server


I hope this helps !
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.