11.1 The payment application must not interfere with use of a two-factor authentication mechanism. The payment application must allow for technologies such as RADIUS or TACACS with tokens, or VPN with individual certificates.
PCI Data Security Standard Requirement 8.3
Testing Procedures:
11.1 Test the payment application in a lab to obtain evidence that it can run with a two-factor authentication mechanism (the payment application must not prohibit an organization’s ability to implement two-factor authentication).