PeopleSoft Adoption Made Smooth & Simple!
On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool. Claim Your Free WalkMe Account Now
Course Of The Month
Become a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SQL Server Distributed Transactions Over Untrusted Domains
Posted on 2006-07-12
We are having a problem with Distributed Transactions in SQL Server. We have two databases on two different machines. one is a client machine in domain DOMAIN1. and second is a standalone machine HOST external to our domain. Both machines are behind firewalls. When ever we start a distributed transaction we have following error:
Server: Msg 7391, Level 16, State 1, Line 1
The operation could not be performed because the OLE DB provider 'SQLOLEDB' was unable to begin a distributed transaction. [OLE/DB provider returned message: New transaction cannot enlist in the specified transaction coordinator. ] OLE DB error trace [OLE/DB Provider 'SQLOLEDB' ITransactionJoin::JoinTran
HOST is running Windows Server 2003.
CLIENT is running Windows XP SP2.
DTC is running on both machines. All relevant ports 1433 TCP, 1434 UDP, 135 TCP are open in both firewalls. We have tried almost all kind of workaround from Microsoft Support website. But nothing is working.
If we make HOST as part of our domain it works. but when HOST goes external to our domain. problem starts.
So looking for some solution..................
Server: Msg 7391, Level 16, State 1, Line 1
The operation could not be performed because the OLE DB provider 'SQLOLEDB' was unable to begin a distributed transaction. [OLE/DB provider returned message: New transaction cannot enlist in the specified transaction coordinator. ] OLE DB error trace [OLE/DB Provider 'SQLOLEDB' ITransactionJoin::JoinTran
HOST is running Windows Server 2003.
CLIENT is running Windows XP SP2.
DTC is running on both machines. All relevant ports 1433 TCP, 1434 UDP, 135 TCP are open in both firewalls. We have tried almost all kind of workaround from Microsoft Support website. But nothing is working.
If we make HOST as part of our domain it works. but when HOST goes external to our domain. problem starts.
So looking for some solution..................
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
4-
2
9 Comments
I had this problem once and it was
1. related to MSDTC network security in component services... did you try enabling that?
2. the firewall was blocking some ports
3. The DNS did not resolve to the right IP address
(trust me it was the three of them in one shot)... so double check all that...
1. related to MSDTC network security in component services... did you try enabling that?
2. the firewall was blocking some ports
3. The DNS did not resolve to the right IP address
(trust me it was the three of them in one shot)... so double check all that...
hi,
1. MSDTC is enabled and configured properly through Component Services.
2. All relevant ports are opened on firewall.
3. Clients can resolve HOST IP. but HOST cannot. because HOST is not in same domain as clients are. Also we can install client application on any machine. so we cannot make such configuration each time on HOST for all new installations.
1. MSDTC is enabled and configured properly through Component Services.
2. All relevant ports are opened on firewall.
3. Clients can resolve HOST IP. but HOST cannot. because HOST is not in same domain as clients are. Also we can install client application on any machine. so we cannot make such configuration each time on HOST for all new installations.
You have to get the host resolving back to the machine, if you trace the MSDTC (I forgot the utility that does this, but there is a utility from microsoft that would test MSDTC and list any errors)....
Basically both machines should be able to resolve each other... perhaps you can create a Secondary DNS zone on your DNS server for that domain...
Basically both machines should be able to resolve each other... perhaps you can create a Secondary DNS zone on your DNS server for that domain...
if there is a firewall between the two domains then you need to check with your system admin if they will allow the DNS ports to open...
the process is simple if you are using windows... right click on DNS servers (in the DNS MMC) add a new secondary zone and follow the steps.
an alternative would be to use each domain as a forwarding (forget the proper technical name for it) domain...
so,
in domain1
if a user is trying to resolve a name that is not within it's scope, it would simply forward the request to the other domain... and vice versa.
the process is simple if you are using windows... right click on DNS servers (in the DNS MMC) add a new secondary zone and follow the steps.
an alternative would be to use each domain as a forwarding (forget the proper technical name for it) domain...
so,
in domain1
if a user is trying to resolve a name that is not within it's scope, it would simply forward the request to the other domain... and vice versa.
Featured Post
Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
In the first part of this tutorial we will cover the prerequisites for installing SQL Server vNext on Linux.
What if you have to shut down the entire Citrix infrastructure for hardware maintenance, software upgrades or "the unknown"? I developed this plan for "the unknown" and hope that it helps you as well. This article explains how to properly shut down …
This videos aims to give the viewer a basic demonstration of how a user can query current session information by using the SYS_CONTEXT function
Via a live example, show how to setup several different housekeeping processes for a SQL Server.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month3 days, 15 hours left to enroll
630 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.