Question
How do I configure MSDTC properly for FTK Central?
Answer
MSDTC can be configured via PowerShell commands, or by manually toggling setting in Windows.
Note: Additional steps may be needed to enable and configure MSDTC on each node if using a SQL cluster.
PowerShell
On any servers running Forensic Tools, Processing Engine, Distributed Processing Manager, or MSSQL, do the following:
- Open PowerShell as Administrator
- Run the commands below to configure MSDTC as well as open the necessary Windows Firewall ports:
# Uninstall MSDTC Uninstall-Dtc -Confirm:$False # Reinstall MSDTC Install-Dtc -StartType "AutoStart" # Configure MSDTC Security Set-DtcNetworkSetting -AuthenticationLevel NoAuth -InboundTransactionsEnabled 1 -OutboundTransactionsEnabled 1 -RemoteClientAccessEnabled 1 -RemoteAdministrationAccessEnabled 0 -XATransactionsEnabled 1 -LUTransactionsEnabled 0 -Confirm:$False # Enable MSDTC Windows Firewall Rules Enable-NetFirewallRule -DisplayGroup "Distributed Transaction Coordinator" # Restart MSDTC Restart-Service -Name MSDTC
Manually
On any servers running Forensic Tools, Processing Engine, Distributed Processing Manager, or MSSQL, do the following:
- Open the Component Services snap-in
- Expand Component Services > Computers > My Computer > Distributed Transaction Coordinator
- Right-click Local DTC and click Properties
- On the Security tab, configure the settings to match the image below, then click OK:
- Open Windows Defender Firewall with Advanced Security
- On the left, click Inbound Rules
- For every rule in the Distributed Transaction Coordinator Group, right-click and select Enable Rule
