Command Prompt reports link to, but still receive error messages

SBS 2003 R2 with Windows XP Pros for workstations. Following error and command prompt info:

The time provider NtpClient is configured to acquire time from one or more time sources, however none of the sources are currently accessible.  No attempt to contact a source will be made for 960 minutes. NtpClient has no source of accurate time.

When I run the command: net Time /querysntip, I get back the following:

"The current SNTP value is : 0x1

The Windows Time server is started and is set to automatic.

Do I need UDP-123 port open?

Also, just FYI: Work stations report:

The current SNTP value is:,0x1,0x1
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Olaf De CeusterCommented:
If you are running ISA you need to open UDP-123.
Also make sure your router is open for that port.
General info here:
If this is a new server, give it a bit of time.
DanKosterOwner, Technology ConsultantCommented:
FYI - has several pool's of servers that you can use.  I always use for my client's servers.  (It automatically rotates between the available public servers in North America.)

It's also recommended that the workstations sync with the sbs server, and let the sbs box sync with a public source.
Bert2005Author Commented:
--> olafdc  I followed the knowledgebase article exactly. I was confused on step 4c where it talks about adding the ,0x1 to the end of each DNS name. How do I do that? Also had problems with the MaxPosPhase Correction and MaxNeg in 6a and 6e. I had already set the SpecialPollInterval to 3600 seconds (one hour), so I wasn't sure what these two were for unless they were saying to only change if off by a certain amount of seconds.

Damn, I hope I don't have to open port UDP -123. As seen from other posts, I'm clueless as to Command Lines and PDM port openings. I would have a better chance of opening a Naval Port in Oklahoma then 80 or 443.

--> Dan Should I put the where the article recommends Peer? Why does one have to make so many registry changes to set SBS to check for time. Shouldn't that be a simple process?
Cloud Class® Course: Microsoft Office 2010

This course will introduce you to the interfaces and features of Microsoft Office 2010 Word, Excel, PowerPoint, Outlook, and Access. You will learn about the features that are shared between all products in the Office suite, as well as the new features that are product specific.

Bert2005Author Commented:
OK, I figured out both issues. But, what confuses me is that the error message would infer that the NTP Client was already configured to look for a time source and probably could not due to Port 123 not being open. So, if the client is already looking, then why do all of those registry changes have to be made?
DanKosterOwner, Technology ConsultantCommented:
I actually didn't look at the KB when I first read the post, I just assumed it was relevent and gave you the FYI for server name.  Now that I looked at it, I can see your confusion.  Here's another link that has information more relevant to an SBS server.  It really isn't that hard in a typical setup:

Of course, this assumes you are using ISA.  If you are using some other form of Firewall, it still shouldn't be that complex to change your ntp server in the registry (should be just a single setting) and make sure outbound 123 UDP is allowed.  You shouldn't need inbound allowed unless you want to make your SBS a public NTP server (which I don't recommend).  

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Bert2005Author Commented:
What is ISA? I know we don't use the SBS firewall. We use the Cisco PIX 501 firewall.
DanKosterOwner, Technology ConsultantCommented:
Microsoft Internet Security and Acceleration (ISA) comes with SBS Premium edition and is basically a firewall/router.  
Bert2005Author Commented:
Oh, this is SBS Standar edition, and we don't have a firewall on.
DanKosterOwner, Technology ConsultantCommented:
So did you get everything figured out?  Even the link I gave you was TMI (too much info) for a standard SBS.  
Bert2005Author Commented:

Still working on it. I kee thinking I have to undo the changes from the Kb I used before. Plus I still need to open port 123. All of the PCs are pointing toward the server, but the server isn't getting times, so I guess we will be off by microseconds for awhile.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.