Configuring the Windows XP Service Pack 2 Firewall for The Complete Exam and Quickbooks Interface.
After installating Service Pack 2, the Windows Firewall is automatically active. By default, the Firewall blocks most network activity, and it must be configured to allow The Complete Exam (TCE) to send and receive data to SQL Server, and to allow TCE to exchange data with Quickbooks. Until this configuration is done, only the computer that is hosting SQL Server (MSDE) may be able to run TCE.
To enable other workstations to connect to SQL Server, you will make configuration changes on your Server. This is the computer that has MSDE or SQL Server installed and holds the data for TCE. Use the Start Menu to open Control Panel.
If you are using the Category view, select
Then, select Windows Firewall
Or, if you are viewing the Control Panel in the “Classic” view, Windows Firewall will be in the list.
Once you open Windows Firewall, the simple solution is to turn the Firewall off. Unfortunately, this also eliminates much of the reason for having Service Pack 2. Turning off the firewall leaves the computer vulnerable to attacks from the internet, so it is best to leave it on and change other configuration settings using the “Exceptions” tab.
Click on the “Exceptions” tab at the top, then click “Add Program.”
The program you need will not be in the list. Click “Browse” then find the sqlservr.exe program used by TCE. In default installations, this program will be found in the C:\MSSQL$TCE\Binn\ folder. Once the file is selected, click “Open” and it will be added to the program list.
Click on the “Change Scope” button.
Be default, the exception will be set to allow access from “Any computer (including those on the Internet). Obviously, this is not what you want. Change the setting to “My network (subnet) only.” This will allow other computers on your local network to connect to SQL Server. However, no matter how the scope is set, the other layers of security are still in effect. For a user to connect to SQL Server, they must have signed in to their computer using a valid user account and password that is recognized by this computer, and that user account must be an Administrative account, or must be specifically granted access to SQL Server using the TCE SQL Manager. The Windows Firewall is simply adding another layer of security, to prevent a user outside your local network from having the opportunity to attempt guessing or cracking passwords, or using other exploits to gain access.
The “Custom List” option is useful only for advanced configurations, such as large networks with multiple subnets and routers, or where some computers on the network are in a “public access” area and should never be allowed to run TCE regardless of the user.
For installations interfacing with Quickbooks, you must also grant an exception for the program
\Program Files\The Complete Exam\QBWRAPIU.EXE
Use the same steps given above beginning with clicking on “Add Program” to create an exception for this program. Quickbooks will then be visible over the local network. NOTE: This step must be completed on the computer that contains the Quickbooks data file and that functions as the Quickbooks server. It is probably the same computer where SQL Server is installed, but it might not be for every installation. In TCE, you can look at the Accounting Link configuration to find the network name of the Quickbooks server.
For Quickbooks access, it may also be necessary to change DCOM configuration settings. These are found under Administrative Tools – Component Services. Under Computers, right click on My Computer, and select Properties. On the “Default Properties” tab, make sure that “Enable Distributed COM on this computer is checked. Without this general setting, the specific authorization for QBWRAPIU.EXE under components will be ignored.
