Solved

NTP windows 2003 ad

Posted on 2010-09-15
6
521 Views
Last Modified: 2012-05-10
Hi,
   I have had alot of issue with ntp in the domain. I have resolved alot of the issues but i am getting the following behaviour which seems a bit strange to me

i changed the time on the pdc server for a test of everything syncing of it. On some servers this time will change automatic no manual intervention but on others and client machines you have to force sync i.e
w32tm /resync
Once you manual enter this command it will go to the pdc and get the time off the pdc fine but why is not doing in automatically  manual intervention on some servers and on client while on others it is ok???

any suggestions?


Thks,

Eoghan  
0
Comment
Question by:BarepAssets
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 9

Expert Comment

by:Tomas Valenta
ID: 33680428
try on workstations running this:
w32tm /config /syncfromflags:domhier /update
net stop w32time
net start w32time
0
 
LVL 12

Expert Comment

by:Rant32
ID: 33680512
A manual NTP peer was probably configured on the clients. If that is the case, then

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Parameters\Type

is set to the value 'NTP' which should be Nt5DS.

To reset Windows 2003 and XP to domain time synchronization, enter this (nothing after the colon):

net time /setsntp:
The command completed successfully.

That also changes the W32Time synchronization type to Nt5DS, which is correct for domain clients. Ideally, only the PDC is set to NTP type with manual NTP peer.

To verify, type

net time /querysntp
This computer is not currently configured to use a specific SNTP server.
0
 

Author Comment

by:BarepAssets
ID: 33681383
hi a manual peer was configured i reset this and when i do net time /querysntp get the above no specfic sntp server also i done  the domain hierachy command and restarted the service still the same if i type resync it works but does not work auto

 
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 12

Accepted Solution

by:
Rant32 earned 500 total points
ID: 33681537
Are you forcibly setting the wrong time on the client to test your time synchronization? That doesn't work.

Depending on the configuration of the time service and the time difference, the background clock synchronization will not make time jumps like it does with a manual sync. Instead, the time is skewed slowly until it's close to the source.

Source: How the Windows Time Service Works
http://technet.microsoft.com/en-us/library/cc773013%28WS.10%29.aspx

Instead, look for Information Event ID 35 in the System event viewer to see if clients are receiving time from the domain controller. If you see Info Event 35, your time sync is fine.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33682018
Time will not update automatically at the same time on all systems.

Run w32tm /resync /rediscover on the clients you think you are having issues with if they update you are good to go.
0
 
LVL 13

Expert Comment

by:Greg Hejl
ID: 33690463
also with a /nowait option with resync rediscover

rant32 is correct on time skew to the source.

if your event logs indicate that time sync is happening the rest will work
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question