Solved

How Do I Prevent Time Sync for Member Servers?

Posted on 2004-03-26
5
122 Views
Last Modified: 2010-04-13
My customer does some sort of testing that requires that their server be set a few months in the past.  Since it is a Windows 2000 server in a Windows 2003 domain, the date keeps getting reset back to the present.  How can I prevent this for the one server?
0
Comment
Question by:sipatterson
  • 2
5 Comments
 
LVL 86

Accepted Solution

by:
jkr earned 250 total points
ID: 10690408
>>How can I prevent this for the one server?

Stop the NTP client on that very machine. See also http://www.microsoft.com/technet/prodtechnol/windows2000serv/maintain/operate/wintime.mspx ("The Windows Time Service")
0
 

Author Comment

by:sipatterson
ID: 10691105
We have tried stopping and disabling the windows time service...it reenables and restarts itself after a few days.

I found in several articles that I can set HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\W32Time\Parameters\type to "NoSync".  I did this, but when I tried to the Windows Time service to "Automatic" and start it, I get the following error:

*****************************
Could not start the Windows Time service on Local COmputer.

Error 1058: The service cannot be started, either because it is disabled or because it has no enabled devices assosiated with it.
*****************************

Seems like it might be unrelated to the original date problem, but I'm not certain.
0
 
LVL 20

Expert Comment

by:Debsyl99
ID: 10692348
Hi

From jkr's link - "Checks the client's time to make sure that it falls within the server's time and the allowable skew"

Kerberos authentication in Windows 2000 is dependent on the time setting of a client (or non-authorative time server) falling within the allowable time skew of the server which by default is (from memory) anything less than five minutes (but not more). If you set this server's time to be three months earlier and subsequently manage to keep it there, it will run into problems being authenticated within the rest of the domain, and will most likely be prevented from accessing any necessary network resources.

"Many components of operating systems in the Microsoft Windows Server 2003 family rely on accurate and synchronized time to function correctly. For example, without clocks that are synchronized to the correct time on all computers, Windows Server 2003 family authentication might falsely interpret logon requests as intrusion attempts and consequently deny access to users"

from
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03mngd/26_s3wts.mspx#XSLTsection121121120120

Hope this helps a bit!

Deb :))
0
 
LVL 20

Expert Comment

by:Debsyl99
ID: 10748476
Hi

Do you need any further help on this? Please let us know

Thanks

Deb :))
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Is your company's data protection keeping pace with virtualization? Here are 7 dynamic ways to adapt to rapid breakthroughs in technology.
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now