Solved

net time \set vs. Windows Time Service in Win 2003 and Win XP

Posted on 2006-07-19
7
619 Views
Last Modified: 2009-02-06
Hello,

I have a multi-part question concerning net time \set and the newer Windows Time Service.

Currently have a XP SP2 clients time synched to the Win 2003 Domain Controller Server through a one-time net time \set command.  

My first question is:
Using net time \set, are the clients continously synched with the server or is the synch only happen once?

My second question is:
Through my research at Microsoft's website they want you to move away from net time \set for XP and Win 2003 in favor of Windows Time Service.  Is this because net time \set doesn't work well for those OSs (because I'm having alot of trouble) and what are the plus\minus between the 2 commands?

Thank you for your time.
0
Comment
Question by:thesultanofswine
  • 3
  • 2
  • 2
7 Comments
 
LVL 13

Assisted Solution

by:prashsax
prashsax earned 250 total points
ID: 17141828
net time /set command will sync your machines time against the server just once.

If you use Windows NTP then it will keep on sync at regular interval.

If you have Windows XP clients then you should configure Windows NTP service and do not rely on net time /set.

As you may know that Windows 2003 Kerberos uses time to authenticate and a time difference in excess of 5 min could cause the authentication problem.

Here is how you set the NTP time source.

net time /setsntp:Server_name

Here server_name is the name of the DC in your domain. This will ensure that this client will have correct time in sync with the DC.

Now, similarly you can set NTP server on DC as well. I uses time.nist.gov. Its a NTP server on internet and keep the time in our network syncronized.

0
 
LVL 83

Expert Comment

by:oBdA
ID: 17141878
If those machines are domain members of an AD domain, you can happily do just *nothing* on your clients. They will synchronize with the authenticating domain controller automatically, there's absolutely nothing you need to do manually.
The only machine that you might want to configure to synchronize with a reliable time source is the PDC emulator.
Yes, you can do that with net time /setsntp, but if you're using a server name (instead of an IP address), you should add ",0x1":
net time /setsntp:ntp.some.domain.com,0x1
Afterwards, restart the time service:
net stop w32time
net start w32time

Basic Operation of the Windows Time Service
http://support.microsoft.com/?kbid=224799
0
 

Author Comment

by:thesultanofswine
ID: 17141991
Thanks for the responses, I'm still a little confused on the Windows Time Service (w32tm.exe) vs. net time vs. w32time (which isn't recoginized on the XP clients).  Are they independant of each other or connected in some way?  
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:thesultanofswine
ID: 17142014
Forget one more question, when the net time /setsntp parameter is used how often do the clients synch up with the server?  Is it configurable?

Thanks again
0
 
LVL 13

Expert Comment

by:prashsax
ID: 17142050
Yes, the time of sync can be configured.

Look at the document below.

http://shib.kuleuven.be/docs/W32Time.shtml
0
 
LVL 83

Accepted Solution

by:
oBdA earned 250 total points
ID: 17142059
w32time is the service that is running by default in W2k and later. w32tm is a command line tool that can be used to configure the time service as well as run as time service itself (which is usually not needed).
When and how the time service synchronizes is described in the article I posted. And just in case: do NOT use the net time /setsntp command on any domain member except on the PDC emulator.
0
 

Author Comment

by:thesultanofswine
ID: 17146154
Thanks guys, I appreciate the help.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Greetings, Experts! First let me state that this website is top notch. I thoroughly enjoy the community that is shared here; those seeking help and those willing to sacrifice their time to help. It is fantastic. I am writing this article at th…
Enterprise networks where VoIP phones have been deployed frequently use port configurations that allow both a computer and an IP phone to be plugged into the same switch port but use different VLANs. On Cisco equipment I'm referring to the "native V…
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now