Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

NTP windows 2003 ad

Posted on 2010-09-15
6
Medium Priority
?
539 Views
Last Modified: 2012-05-10
Hi,
   I have had alot of issue with ntp in the domain. I have resolved alot of the issues but i am getting the following behaviour which seems a bit strange to me

i changed the time on the pdc server for a test of everything syncing of it. On some servers this time will change automatic no manual intervention but on others and client machines you have to force sync i.e
w32tm /resync
Once you manual enter this command it will go to the pdc and get the time off the pdc fine but why is not doing in automatically  manual intervention on some servers and on client while on others it is ok???

any suggestions?


Thks,

Eoghan  
0
Comment
Question by:BarepAssets
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 9

Expert Comment

by:Tomas Valenta
ID: 33680428
try on workstations running this:
w32tm /config /syncfromflags:domhier /update
net stop w32time
net start w32time
0
 
LVL 12

Expert Comment

by:Rant32
ID: 33680512
A manual NTP peer was probably configured on the clients. If that is the case, then

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Parameters\Type

is set to the value 'NTP' which should be Nt5DS.

To reset Windows 2003 and XP to domain time synchronization, enter this (nothing after the colon):

net time /setsntp:
The command completed successfully.

That also changes the W32Time synchronization type to Nt5DS, which is correct for domain clients. Ideally, only the PDC is set to NTP type with manual NTP peer.

To verify, type

net time /querysntp
This computer is not currently configured to use a specific SNTP server.
0
 

Author Comment

by:BarepAssets
ID: 33681383
hi a manual peer was configured i reset this and when i do net time /querysntp get the above no specfic sntp server also i done  the domain hierachy command and restarted the service still the same if i type resync it works but does not work auto

 
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 12

Accepted Solution

by:
Rant32 earned 2000 total points
ID: 33681537
Are you forcibly setting the wrong time on the client to test your time synchronization? That doesn't work.

Depending on the configuration of the time service and the time difference, the background clock synchronization will not make time jumps like it does with a manual sync. Instead, the time is skewed slowly until it's close to the source.

Source: How the Windows Time Service Works
http://technet.microsoft.com/en-us/library/cc773013%28WS.10%29.aspx

Instead, look for Information Event ID 35 in the System event viewer to see if clients are receiving time from the domain controller. If you see Info Event 35, your time sync is fine.
0
 
LVL 59

Expert Comment

by:Darius Ghassem
ID: 33682018
Time will not update automatically at the same time on all systems.

Run w32tm /resync /rediscover on the clients you think you are having issues with if they update you are good to go.
0
 
LVL 13

Expert Comment

by:Greg Hejl
ID: 33690463
also with a /nowait option with resync rediscover

rant32 is correct on time skew to the source.

if your event logs indicate that time sync is happening the rest will work
0

Featured Post

New benefit for Premium Members - Upgrade now!

Ready to get started with anonymous questions today? It's easy! Learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question