Solved

Going to remove 1st DC in domain, need to change the time server

Posted on 2008-06-23
4
195 Views
Last Modified: 2010-04-18
Hi

I am shortly going to remove the first domain controller in the domain (we just have a single domain setup)

I have transfered all of the FSMO roles and made the replacement DC a GC and installed DNS, the next thing i need to do is change the NTP time server on the new DC i run the command below
net time /setsntp:ntp2a.mcc.ac.uk
i have stopped and restarted the w32time service

if i type net time from the command line of the new DC it still shows as reciving time frm my old DC

Is there somthing i have forgotten.

Thanks

Nick
0
Comment
Question by:ncomper
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 38

Accepted Solution

by:
Hypercat (Deb) earned 250 total points
ID: 21850265
You need to set up the new DC as a time server for the domain.  Here's a link to an article on how to do this:

http://support.microsoft.com/kb/816042/en-us
0
 
LVL 85

Assisted Solution

by:oBdA
oBdA earned 250 total points
ID: 21850604
You only need to transfer the PDC emulator role (and configure the time server like you already did), nothing more.
Every DC in an AD domain will autmotically sync with the PDC emulator, and every member will sync with the DC authenticating it.
You can *NOT* use "net time" to determine the time server a machine uses. "net time" knows *nothing* about AD time hierarchy, it just queries the browser list for a DC.
"net time" can be used to configure the time server on the PDC emulator, but that's about all it's good for in an AD domain.
0
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 21856059
I have to disagree with oBdA - the net time command can be used to set and query the sntp settings of the local time server.  However, even if you've transferred the PDC Emulator role, as it appears you probably already have, you can run into problems if the new PDC Emulator is not set up properly as an authoritative time server for the domain.  If you follow the steps in the article I cited, you will ensure that everything is set up properly and that all other clients and servers in the domain will see this server as the authoritative time server for the internal network.
0
 
LVL 5

Expert Comment

by:minvis
ID: 21863992
Use NTDSUTIL to transfer the PDC emulator role. http://support.microsoft.com/kb/255504

IMPORTANT: Transfer, don't seize
0

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question