Solved

NTP Active Directory

Posted on 2014-10-19
9
215 Views
Last Modified: 2014-10-26
Hi,

I am trying to get the domain controllers to update to the correct time via the ntp server.  I have  added it in the registry key for ntp the source ip, it shows in this format:   xxx.xxx.xxx.x , 0x9 .  What is th 0x9 represent?  Also, the time is not updating.  I have verified connectivity to the resource.

thanks
0
Comment
Question by:Jack_son_
  • 4
  • 3
  • 2
9 Comments
 
LVL 30

Expert Comment

by:Kerem ERSOY
ID: 40390773
Hi,
Once you've setup the NTP server it does not mean that the Domain controller would start to update from it. You shuld make the initial synchronization manually and it would then start to synchronize with the NTP Source.

Please follow this TechNet article here. It shows hoe to perform the initial synchronziation. The problem here is NTP would not strt synchronization if time difference is too big.

You can find the flags after the time server here

This article over MSDN has the meaning of all the flags.

Cheers,
K.
0
 

Author Comment

by:Jack_son_
ID: 40391015
thanks; this is all set, although the time is still not correct.  Looks like it is using NTP now in the registry on the PDC.  Will it take time to update?
0
 
LVL 30

Assisted Solution

by:Kerem ERSOY
Kerem ERSOY earned 334 total points
ID: 40391036
You're welcome. Are you sure your Time Zone is configured properly? This being said clients do synchronization when you logon/reboot or periodically over the server. To do it manually you can use this command:

w32tm /resync

Open in new window


Cheers,
K.
0
 

Author Comment

by:Jack_son_
ID: 40391132
yes; I am actually just looking at the time on the DC.  Right now it shows this when I run the resync command:

The computer did not resync because no time data was available.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 14

Assisted Solution

by:frankhelk
frankhelk earned 166 total points
ID: 40391471
Hmmm ... W32time, the timekeeping service in Windows. I experienced enough trouble with that piece of crap when in NTP mode to avoid using it whenever I can.

My recommendation:

Use a Windows port of the classic *ix NTP service, sync a master (or two, three) with an external source (i.e. from pool.ntp.org) and sync the clients and DCs to the master. The NTP service software is free. Easy to install and configure, works like a charm and is stable as a rock. And it is nicer when it comes to one of the rare cases of troubleshooting.

See this article for the "How To".

The NTP service has a low ressource footprint, therefore the NTP functionality could be hooked onto existing machines or VM's like webservers, ftp servers, mailservers or database hosts - even in a DMZ - without visible performance impact.

If securtity is an issue, you might as well place radio controlled clock appliances into your LAN who serve time very reliable and precise.
0
 
LVL 30

Expert Comment

by:Kerem ERSOY
ID: 40391494
When you say time is wrong over PDC what do you mean? Some hours? minutes?

Are you clients logging in to the domain or do they belong to some own workgroup ?
0
 

Author Comment

by:Jack_son_
ID: 40391637
no, its a domain and the time is wrong.  I need the PDC (primary domain controller) to sync with an external NTP server versus its internal clock.
0
 
LVL 14

Expert Comment

by:frankhelk
ID: 40393813
Maybe I repeat myself, but that's a classic case for a classic NTP client ... give it a try.
0
 
LVL 30

Accepted Solution

by:
Kerem ERSOY earned 334 total points
ID: 40394556
When you run these commands:

> net stop w32time
> w32tm /config /syncfromflags:manual /manualpeerlist:”0.pool.ntp.org, 1.pool.ntp.org, 2.pool.ntp.org” /reliable:yes
> net start w32time

Open in new window


I guess this should work.

Cheers,
K.
0

Featured Post

Make managing Office 365 email signatures a breeze

Are you using Office 365? Having trouble trying to set up email signatures for your users? Getting stressed out managing multiple signatures? Need an easier way to manage? We have a solution for you, try the most-user friendly and powerful signature management tool on the market.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
Know what services you can and cannot, should and should not combine on your server.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now