Solved

Going to remove 1st DC in domain, need to change the time server

Posted on 2008-06-23
4
192 Views
Last Modified: 2010-04-18
Hi

I am shortly going to remove the first domain controller in the domain (we just have a single domain setup)

I have transfered all of the FSMO roles and made the replacement DC a GC and installed DNS, the next thing i need to do is change the NTP time server on the new DC i run the command below
net time /setsntp:ntp2a.mcc.ac.uk
i have stopped and restarted the w32time service

if i type net time from the command line of the new DC it still shows as reciving time frm my old DC

Is there somthing i have forgotten.

Thanks

Nick
0
Comment
Question by:ncomper
  • 2
4 Comments
 
LVL 38

Accepted Solution

by:
Hypercat (Deb) earned 250 total points
ID: 21850265
You need to set up the new DC as a time server for the domain.  Here's a link to an article on how to do this:

http://support.microsoft.com/kb/816042/en-us
0
 
LVL 84

Assisted Solution

by:oBdA
oBdA earned 250 total points
ID: 21850604
You only need to transfer the PDC emulator role (and configure the time server like you already did), nothing more.
Every DC in an AD domain will autmotically sync with the PDC emulator, and every member will sync with the DC authenticating it.
You can *NOT* use "net time" to determine the time server a machine uses. "net time" knows *nothing* about AD time hierarchy, it just queries the browser list for a DC.
"net time" can be used to configure the time server on the PDC emulator, but that's about all it's good for in an AD domain.
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 21856059
I have to disagree with oBdA - the net time command can be used to set and query the sntp settings of the local time server.  However, even if you've transferred the PDC Emulator role, as it appears you probably already have, you can run into problems if the new PDC Emulator is not set up properly as an authoritative time server for the domain.  If you follow the steps in the article I cited, you will ensure that everything is set up properly and that all other clients and servers in the domain will see this server as the authoritative time server for the internal network.
0
 
LVL 5

Expert Comment

by:minvis
ID: 21863992
Use NTDSUTIL to transfer the PDC emulator role. http://support.microsoft.com/kb/255504

IMPORTANT: Transfer, don't seize
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn about cloud computing and its benefits for small business owners.
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question