Question

How do I configure MSDTC properly for FTK Central?

 

Answer

MSDTC can be configured via PowerShell commands, or by manually toggling setting in Windows.


Note: Additional steps may be needed to enable and configure MSDTC on each node if using a SQL cluster.


PowerShell

On any servers running Forensic Tools, Processing Engine, Distributed Processing Manager, or MSSQL, do the following:

  1. Open PowerShell as Administrator
  2. Run the commands below to configure MSDTC as well as open the necessary Windows Firewall ports:
# Uninstall MSDTC
Uninstall-Dtc -Confirm:$False
# Reinstall MSDTC
Install-Dtc -StartType "AutoStart"
# Configure MSDTC Security
Set-DtcNetworkSetting -AuthenticationLevel NoAuth -InboundTransactionsEnabled 1 -OutboundTransactionsEnabled 1 -RemoteClientAccessEnabled 1 -RemoteAdministrationAccessEnabled 0 -XATransactionsEnabled 1 -LUTransactionsEnabled 0 -Confirm:$False
# Enable MSDTC Windows Firewall Rules
Enable-NetFirewallRule -DisplayGroup "Distributed Transaction Coordinator"
# Restart MSDTC
Restart-Service -Name MSDTC


Manually

On any servers running Forensic Tools, Processing Engine, Distributed Processing Manager, or MSSQL, do the following:

  1. Open the Component Services snap-in
  2. Expand Component Services > Computers > My Computer > Distributed Transaction Coordinator
  3. Right-click Local DTC and click Properties
  4. On the Security tab, configure the settings to match the image below, then click OK:
  5. Open Windows Defender Firewall with Advanced Security
  6. On the left, click Inbound Rules
  7. For every rule in the Distributed Transaction Coordinator Group, right-click and select Enable Rule