Article ID: 181775
Article Last Modified on 9/23/2005
APPLIES TO
- Microsoft Transaction Services 2.0
This article was previously published under Q181775
SYMPTOMS
Unexpected behavior may occur when you access Microsoft Transaction Server (MTS) components that have package security enabled from Internet Information Server 4.0 Active Server Pages on a backup domain controller (BDC). Users who should have access may be denied access and users who do not have access may be allowed. In addition, the ISecurityProperty information can be incorrect.
The group name has been changed to "MTS Impersonators" to accommodate the 20-character limitation. Microsoft Windows NT 4.0 Service Pack 4 and later contain the changes.
CAUSE
When Microsoft Transaction Server (or Internet Information Server version 4.0) is installed on a BDC, a global group is created instead of a local group. The "MTS Trusted Impersonators" group name's length (25 characters) exceeds the maximum length allowed for a global group name. The global group name has a 20-character limit, but the local group name can have up to 256 characters.
RESOLUTION
To resolve this problem, upgrade to Microsoft Windows NT 4.0 Service Pack 6 (SP6).
STATUS
Microsoft has confirmed this to be a problem in Microsoft Transaction Server version 2.0.
This problem has been corrected in Windows NT 4.0 Service Pack 4 (SP4) and later.
Keywords: kberrmsg kbbug kbfix kbqfe kbsysadmin kbhotfixserver KB181775