We are trying to become PCI certificated and have hit a road block. We have isolated our stations so they can not talk to any other application/server besides there local Domain Controller/Application server. We are looking for a way to use Two Factor Authentication to gain access to these remote server using RDP. These servers are mostly Windows Server 2003 with a couple of Windows Server 2008 in the mix.
Has anyone found any solutions for Two Factor authentication and RDP that is fairly low cost or free. From what I can see nothing is build in to a Windows 2003 or 2008 Server do to this. A couple of solutions I have found are Rohos Logon Key http://www.rohos.com/
and PhoneFactor http://www.phonefactor.com
Any other ideas?