Welcome to MSDN Blogs Sign in | Join | Help

XP SP2 and Transactions

The preview (RC2) of Windows XP Service Pack 2 is available for download at http://www.microsoft.com/technet/prodtechnol/winxppro/sp2preview.mspx

The general info about it can be found at http://msdn.microsoft.com/security/productinfo/XPSP2/default.aspx and http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2chngs.mspx More info about the changes in MSDTC is also available at http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2otech.mspx#EBAA and http://support.microsoft.com/?id=899191

 

In this post I will cover what changes are introduced in this SP for distributed transactions, what is the impact on your applications and how can you re-enable your scenarios.

 

When you install XP SP2, all network MSDTC transactions will be disabled, even if network transactions had been previously enabled. This means that if you are using COM+ or Enterprise Services (or simple OleTx clients and resource managers) to flow transactions from or into the box, you will need to follow the steps defined below to re-enable your scenarios.

 

The first step is to enable network transactions in the Security Configuration dialog for MSDTC. To do this, open Control Panel\Administrative Tools\Component Services. Then select Component Services\Computer\My Computer, right-click and choose Properties. On the MSDTC tab, press "Security Configuration..." button and then select what you need. You will notice that the old checkbox “Network Transactions” has been replaced with a new group of settings named “Transaction Manager Communication”. This group contains two new checkboxes and 3 radio buttons, defined below.

 

Allow Inbound” when enabled will allow a remote computer to flow transactions to the local computer; this is typically needed on the box hosting the MSDTC for a resource manager like Microsoft SQL Server. When enabled, “Allow Outbound” will allow the local computer to flow transactions to a remote computer; this is typically needed on the “client” box, where the transaction is initiated.

 

When “Mutual Authentication Required” is selected, the local MSDTC (proxy or service) will communicate with a remote MSDTC service using only encrypted messages and mutual authentication (Windows Domain authentication). If a secure communication cannot be established with the remote system, the communication will be denied. “Incoming Caller Authentication Required” means that if mutual authentication cannot be established, but the incoming caller can be authenticated, then the communication will be allowed. Currently only Windows 2003 Server and XP SP2 support the first two options. “No Authentication Required” means that the MSDTC communication on the network can fallback to a non authenticated and non encrypted communication if the attempts to start a secure communication will fail. The “no authentication required” option is for compat communications with previous OSes (W2K, XP RTM and XP SP1); this setting needs also to be used when the computers involved are located in two untrusted Windows domains or in a Windows workgroup. If your XP SP2 box is talking to a Windows 2003 system that has disabled it’s RPC security for MSDTC (using TurnOffRpcSecurity registry key - see http://blogs.msdn.com/florinlazar/archive/2004/03/02/82916.aspx for more info), then you will need to use this third option on the XP SP2 box to enable network transactions between the two systems.

 

The second step in enabling network transactions is related to the firewall. By default, after installing XP SP2, the Windows Firewall will be on. To enable network transactions through the firewall, you will need to add the msdtc.exe to the exception list of the firewall on all the machines involved in the transactions. You can do this using the UI in Control Panel\Windows Firewall or you can use this command: “netsh firewall set allowedprogram %windir%\system32\msdtc.exe MSDTC enable”.

 

Another configuration setting that you need to be aware (although I consider it to be an uncommon scenario) is RestrictRemoteClients registry key. If the value of this key is set to 2 (RPC_RESTRICT_REMOTE_CLIENT_HIGH) then MSDTC network transactions will not be able to work properly. MSDTC supports only RPC_RESTRICT_REMOTE_CLIENT_NONE (0) and RPC_RESTRICT_REMOTE_CLIENT_DEFAULT (1) values. See http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2netwk.mspx#XSLTsection128121120120 for more info on RestrictRemoteClients.

 

I recommend and I encourage you to give a try to this release candidate for XP SP2 on your test systems and send your feedback to the XP SP2 preview newsgroups: http://communities.microsoft.com/newsgroups/default.asp?icp=xpsp2&slcid=us . Thanks!

 

[Updated Sep 20, 2004] 

Published Friday, June 18, 2004 3:00 AM by florinlazar

Comments

# DTC Transactions and Windows XP SP2

Friday, June 18, 2004 7:35 AM by Ingo Rammer's Weblog
Florian Lazar on DTC Transactions and Windows XP SP2. I'll definitely need this more often than not....

# XP SP2 RC2 and Distributed Transactions

Friday, June 18, 2004 7:52 AM by Robert Hurlbut's .Net Blog

# XP SP2 RC2 and Distributed Transactions

Friday, June 18, 2004 7:52 AM by Robert Hurlbut's .Net Blog

# Florin on XP SP2 changes to Distributed Tx

Friday, June 18, 2004 8:50 AM by Sam Gentile's Blog

# Florin and Don on XP SP2 changes to Distributed Tx

Friday, June 18, 2004 3:23 PM by Sam Gentile's Blog

# COM security updates in XP SP2

Sunday, June 20, 2004 2:02 AM by Musings of an Iconoclast : tarun's weblog
Yeah, so I am restarting blogging with some updates on XP SP2 security. It seems Microsoft has made significant changes to how COM objects are accessed over the network in XP SP2. Official details are here. Also, check out Florin...

# Securing COM for Windows XP Service Pack 2

Monday, June 21, 2004 2:36 AM by Sergey Simakov blog

# re: XP SP2 and Transactions

Thursday, June 24, 2004 10:51 AM by Ken Cowan

I read the docs on MSDN awhile ago and don't remember any mention of MSDTC. If this material isn't there, can you get this up there?

KC

# re: XP SP2 and Transactions

Thursday, June 24, 2004 11:23 AM by Florin Lazar
Ken,

Are you referring to MSDTC documentation in general? If so, you can find it at http://msdn.microsoft.com/library/?url=/library/en-us/cossdk/htm/dtc_toplevel_6vjm.asp?frame=true

# re: XP SP2 and Transactions

Friday, June 25, 2004 11:39 AM by Ken Cowan

MSDN has a ton of material on XP SP2 changes for both admins and developers. The way they wrote it, their list was everything one needs to know about SP2. Your blog post is important information that (I think) is missing.

I remember seeing the gory details about DCOM and RPC changes. I don't remember seeing anything about MSDTC changing.

KC

# re: XP SP2 and Transactions

Thursday, July 01, 2004 9:59 AM by Florin Lazar [MSFT]
Ken, the information from this post will be added to MSDN.

# XP SP2 and Transactions

Sunday, July 04, 2004 3:53 PM by Paul Fallon's WebLog

# re: XP SP2 and Transactions

Monday, July 12, 2004 1:50 PM by Angel
http://weblogs.asp.net/angelsb/archive/2004/07/12/180833.aspx

Great information on setting up the operating system! Thanks

# MSDTC with Windows XP SP2

Tuesday, August 10, 2004 3:51 PM by Soapbox 3.0

# Virtualized Experimentational Transactional Instances

Tuesday, August 17, 2004 2:44 PM by Objective Disclosures

# Virtualized Experimentational Transactional Instances

Tuesday, August 17, 2004 3:04 PM by Objective Disclosures

# When would SqlConnection.Open blow away a COM context?

Wednesday, September 01, 2004 6:58 PM by hacked.brain

# MSDTC and Windows Server 2003 Service Pack 1 Release Candidate

Monday, December 13, 2004 8:41 PM by Florin Lazar's WebLog

# Windows 2003 SP1 y BizTalk Server 2004

Thursday, April 14, 2005 2:00 PM by BizTalkLATAM's Blog
Que les puedo decir, el SP1 de Windows 2K3 tambien afecta a BizTalk de la misma forma que lo hace el...

# Windows 2003 SP1 y BizTalk Server 2004

Thursday, April 14, 2005 2:02 PM by BizTalkLATAM's Blog
Que les puedo decir, el SP1 de Windows 2K3 también afecta a BizTalk de la misma forma que lo hace el...

# Using Windows XP SP2, Windows Server 2003 SP1 and MSDTC on Clusters

Wednesday, April 27, 2005 4:31 AM by Florin Lazar's WebLog
In order to allow Windows XP SP2 or Windows Server 2003 SP1 to talk to a remote MSDTC located in a cluster,...

# re: XP SP2 and Transactions

Monday, May 16, 2005 8:03 PM by Qflash
RePost:
http://www.yeyan.cn/Database/WindowsXPSP2Transactions.aspx

# re: XP SP2 and Transactions

Tuesday, May 17, 2005 8:57 AM by James White
Oh thank God. I've been dealing with this issue FOREVER and every solution I've heard mentions changing the Windows Server 2003 config, but never the Windows XP MSDTC options. It finally works. You rock!

# XP SP2 , MSDTC & COM+

Friday, June 24, 2005 3:30 AM by Thomas Mathews
I have enabled the Network DTC Access and XA Transactions. Modified the Firewall Configuration to exclude MSDTC, still my COM+ components fail to initiate. My machine hosts an Website (on Win XP), uses COM+ components and Oracle 8i Client. If I try to use insert, update or delete functionality, it raises [Microsoft][ODBC driver for Oracle]Failure in DTC: not able to validate open information.

Could some help me out?

# re: XP SP2 and Transactions

Friday, July 08, 2005 10:29 AM by P Velasquez
I am having the same issue Thomas. I have enabled the Network DTC Access {Allow Remote Clients, Allow Remote Administration, Transaction Manager Communcation -- Allow Inbound, Allow Outbound and No Authentication Required} and Enable XA Transactions on the XP SP2 with DTC Logon Account NT AUTHORITIY. Modified the Firewall Configuration to exclude MSDTC, still my COM+ components fail to initiate. My machine hosts an Website (on Win XP), uses COM+ components and Oracle 9 Client with registry settings of [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSDTC\MTxOCI ...OracleXaLib set oraclient9.dll, OracleSqlLib set orasql9.dll, OracleOciLib set oci.dll]. I get [Microsoft][ODBC driver for Oracle]Failure in DTC: not able to validate open information.
I checked the trace file for the DTC and the events appear to be in order - TRANSACTION_BEGN, RM_ENLISTED_IN_TRANSACTION, RM_VOTED_COMMIT, RM_ISSUED_COMMIT, RM_ACKNOWLEDGED_COMMIT.
I am thinking it is the XA DLL I see information suggesting to create a registry key for the "mtxoci.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSDTC\XADLL] keyname: mtxoci.dll data:c:\Sindows\system32\mtxoci.dll Would you agree?????

# re: XP SP2 and Transactions

Tuesday, July 12, 2005 11:58 AM by P Velasquez
SOLUTION...[Microsoft][ODBC driver for Oracle]Failure in DTC: not able to validate open information.
I added the key as I mentioned above and it works. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSDTC\XALL]
The error only happens when in the VB6 app the MTSTransactionMode is set to 2.

# re: XP SP2 and Transactions

Thursday, August 04, 2005 12:13 PM by Sean
Thanks so much for this, our admin did an upgrade and I have been trying to track this issue down!

# re: Oracle 9i and up, ODBC, COM and .NET issue.

Saturday, September 10, 2005 3:11 PM by Rama.NET

# DTCPing: Troubleshooting MSDTC Connectivity Issues

Friday, September 16, 2005 1:31 PM by Florin Lazar's WebLog
In today's world, security hardening is causing many headaches to software developers and admins. Especially...

# re: XP SP2 and Transactions

Tuesday, October 04, 2005 8:59 AM by Henrik
Thanks a lot. Very good descriptions. It solved my MSDTC problems in Windows Server 2003.

# re: XP SP2 and Transactions

Wednesday, November 02, 2005 12:27 PM by Monica
Any other/or more ideas?This's not solved my problem, and I'm still receiving errors when opening site from Windows Xp SP2 ..such like session variables which return empty etc..I'm sure the site's ok, as tt's still running in a Windows 2000 OS.. thx

# re: XP SP2 and Transactions

Thursday, November 03, 2005 4:22 AM by Monica
I Solved! IIS could not solve my address, I tried with IP Address and now everything it's ok!

# re: XP SP2 and Transactions 'Runtime Error 70'

Saturday, February 18, 2006 4:40 AM by ali
I have done exaclty as you have instructed but still i'm facing the same problem. When I'm running an application that requires COM+ component on Windows 2003 it's bringing up a Runtime Error "Permission Denied" 70. Please Advice at your earliest please.

# re: XP SP2 and Transactions

Saturday, February 18, 2006 11:55 AM by florinlazar
To: ali
What version of Windows 2003 are you running? Web Edition by chance?

# re: XP SP2 and Transactions

Friday, March 10, 2006 4:57 AM by Viv
Problem still there!

I have done exactly as mentioned by you and the error message still says the transcation manager is disabled. I am using windows xp professional sp 2.
I have also turn my firewall off and exclud the msdtc.exe.
My application is running .net 1.1 with com+ iis authentication set to windows integrated. IE is set to prompt for password and uid. Domain userid is entered when running the pages.

Any idea??!!!

# re: XP SP2 and Transactions

Thursday, March 16, 2006 6:40 PM by florinlazar
To: Viv

Where do you see this error message? If you do a "net stop msdtc" and then a "net start msdtc" do you any entry created in Event Viewer (Application and System)? I also recommend posting your issue at our transactions forum at http://forums.microsoft.com/MSDN/ShowForum.aspx?ForumID=388&SiteID=1 for a faster response. Thanks.

# MSDTC security model in windows 2003,sp1(same as windows xp,sp2)

Friday, April 14, 2006 9:17 PM by MADHU BLOG(MSDTC/COM+/WEB SERVICES/WCF)
//This content applies to windows 2003,sp1 and windows xp,sp2 machines
Microsoft introduced MSDTC security...

# re: XP SP2 and Transactions

Tuesday, April 18, 2006 7:55 AM by jd
thanks! 2 days googling around without any result and the only problem was Windows Firewall. Frustrating, but you helped a lot.

# Upgrading MQSeries Adapter from BizTalk 2004 to 2006

Monday, June 26, 2006 6:26 PM by Jose Luis Calvo
I have an environment with BizTalk 2004 and the MQSeries Adapter which I’m upgrading to BizTalk 2006....

# TransactionScope + MSDTC + Windows 2000

Wednesday, June 28, 2006 4:11 PM by B#

# re: XP SP2 and Transactions

Thursday, July 13, 2006 3:04 AM by Sujit Sakre
This information is very good. I have used it to resolve cloned server issue (windows 2003 servers). Right now I am facing an issue with windows XP SP2 machine calling a database server (windows 2003 server). The error is the usual "New transaction cannot enlist in specified transaction coordinator" and "Error 8004d00a. Distributed Transaction error" I have tried diagnozing with DTCPing.exe as suggested; I am getting the following error with DTCPing; The error is: Problem:fail to invoke remote RPC method Error(0x5) at dtcping.cpp @303 -->RPC pinging exception -->5(Access is denied.) RPC test failed The error I am getting is when windows 2003 server tries the DTCPing to communicate with XP SP2 machine; although the communication from XP SP2 to windows 2003 server is successful. I have tried the solutions suggested, 1) The correct security configuration for MSDTC on both machines(No Authentication Rquired) 2) Adding MSDTC.exe as an exception in the windows firewall 3) RestrictRemoteClients key: this key is not present in my registry although I am running windows XP service pack2 machine. Can you help me with this error?

# re: XP SP2 and Transactions

Friday, July 14, 2006 6:21 AM by Nitin
How to solve the following problem on WIndows 2000 Professional My program uses DTC, when a stored procedure is executed, i get the following error "New transaction cannot enlist in the Specified transaction coordinator"

# re: XP SP2 and Transactions

Friday, August 04, 2006 7:20 AM by Ritesh Shah
I have enabled the Network DTC Access and XA Transactions. Firewall is disabled, still my COM+ components fail to initiate. My machine hosts an Website (on Win XP), uses COM+ components and SQL Server 2005. If I try to use insert, update or delete functionality, it raises Error HRESULT E_FAIL has been returned from a call to a COM component

# re: XP SP2 and Transactions

Sunday, September 10, 2006 7:33 AM by ido
i have a client & com+ application installed on a XP SP2, but i can't get the Transaction To Work - i use Oracle 9i Client. I've Done Everything: Allowed everything in the MSDTC Security, Added the oracle Dll to the HKLM\...\XADLL, Allowed The msdtc.exe in the firewall Gave the Network service user permissions on the Oracle Client Directory, and still transactions Won't Work - Any Suggestions ?

# We upgraded our servers to Windows 2003 SP1, and now our data-driven application fails with strange errors!

Wednesday, November 15, 2006 8:58 AM by Microsoft SQL Server Support Blog

Problem Description After upgrading an application server or database server to Windows 2003 SP1, the

# MSDTC and Windows Server 2003 Service Pack 1 Release Candidate

Saturday, February 10, 2007 7:33 AM by Florin Lazar's WebLog

The Windows Server 2003 Service Pack 1 Release Candidate is available for download at http://www.microsoft.com/windowsserver2003/downloads/servicepacks/sp1/default.mspx

# Using Windows XP SP2, Windows Server 2003 SP1 and MSDTC on Clusters

Sunday, February 11, 2007 6:52 AM by Florin Lazar's WebLog

In order to allow Windows XP SP2 or Windows Server 2003 SP1 to talk to a remote MSDTC located in a cluster,

# re: XP SP2 and Transactions

Wednesday, February 28, 2007 7:01 AM by vinay pugalia

I want help of you guys in solving an issue related to MSDTC. I am developing a multiuser DB application with MS SQL Server 2005 and .Net 2005. Both my DB Server and client machine are having XP Prof. with SP2.

I am using System.Transactions to maintain Distributed Transactions. I do not face any problems when I execute my code on the DB server itself. But when I try to execute the same code from any client machine, the following error is fired : "Communication with the underlying transaction manager has failed."

I am really stuck because of this issue. Its a blocker for me.

I have also made the following configuration on my system :

1.MSDTC on both Server and Client :

 a.Network DTC Access - Checked

 b.Allow Remote clients - checked

 c.Allow inbound and Allow outbound - checked

 d.Mutual authentication required - selected

2.Added the following keys in the registry:

 a. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\RPC - EnableAuthEpResolution 1

 b. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\RPC - RestrictRemoteClients 0

3. I have disabled the firewall and also added msdtc.exe in the exceptions.

please help me....

# re: XP SP2 and Transactions

Wednesday, February 28, 2007 2:30 PM by florinlazar

I recommend posting your issues at http://forums.microsoft.com/MSDN/ShowForum.aspx?ForumID=388&SiteID=1

# Transaction Scope « Private: .NET + OO concept

Wednesday, September 19, 2007 7:07 AM by Transaction Scope « Private: .NET + OO concept

PingBack from http://dev1.wordpress.com/2007/09/19/transaction-scope/

# Upgrading MQSeries Adapter from BizTalk 2004 to 2006

Monday, February 18, 2008 5:09 PM by Jose Luis Calvo

I have an environment with BizTalk 2004 and the MQSeries Adapter which I’m upgrading to BizTalk 2006.

# MSDTC « Th3nu11’s Weblog

Thursday, July 17, 2008 9:26 AM by MSDTC « Th3nu11’s Weblog

PingBack from http://th3nu11.wordpress.com/2008/07/17/msdtc/

Anonymous comments are disabled
 
Page view tracker