Solved

Setting up PDC to be Authoritative Time Server

Posted on 2007-11-15
3
1,048 Views
Last Modified: 2010-04-21
We're novices at the whole NTP/Time Service setup, so here goes:
Currently whenever a NET TIME command  is run from a client PC on our domain, it returns a "Could not locate Time server" message. Although we are part of a larger Forest, we also have a member server that runs our Time & Attendance system on site and syncs with a Galleon Atomic clock.
I'd like an opinion on whether this scenario would be OK:

Set the PDC to be our local domain internal authoritative time server by pointing it at the T&A server (not an external NTP) using this command from the Microsoft site:
w32tm /config /manualpeerlist:<servername> /syncfromflags:manual /reliable:yes /update

Or should we sync with either 1) time.windows.com or 2) a PDC further up the domain forest?

Some experience/advice would be much appreciated.
0
Comment
Question by:dannewton
3 Comments
 
LVL 38

Accepted Solution

by:
ChiefIT earned 100 total points
ID: 20289370
Here you go:

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Q_22799695.html

As an auditting tool, may I recommend Domain Time II, from Symetricom's website. Just google search Domain Time II.
0
 
LVL 9

Assisted Solution

by:dreamyguy
dreamyguy earned 100 total points
ID: 20289997
As per http://support.microsoft.com/kb/216734 and http://support.microsoft.com/kb/816042, this is what Microsoft recommends.

By default, Windows-based computers use the following hierarchy:
• All client desktop computers nominate the authenticating domain controller as their in-bound time partner.
• All member servers follow the same process as client desktop computers.
• Domain controllers may nominate the primary domain controller (PDC) operations master as their in-bound time partner but may use a parent domain controller based on stratum numbering.
• All PDC operations masters follow the hierarchy of domains in the selection of their in-bound time partner.
Following this hierarchy, the PDC operations master at the root of the forest becomes authoritative for the organization. We highly recommend that you configure the authoritative Time Server to gather the time from a hardware source. When you configure the authoritative Time Server to sync with an Internet time source, there is no authentication. We also recommend that you reduce your time correction settings for your servers and stand-alone clients. These recommendations provide more accuracy and security to your domain.
0
 

Author Closing Comment

by:dannewton
ID: 31409306
Thnaks Guys. I took some stuff from both your posts and also a bit of home-spun inspiration into the mix so I''ll split the points. Many thanks.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question