I am wanting to double check that the NTP server source settings that the previous PDCE was using were terminated and transferred over to the new PDCE with the FSMO change. I assumed incorrectly that this was part of the process of transferring FSMO roles. Also, part of me is worried that a mistake in manually doing this could cause issues effecting Kerberos authentication.
I ran the following command on my computer w32tm /query /source and the results show one of the older non PDCEs. Then I log into the new server 2012 PDCE and run the same command and it points to the previous 2003 PDCE, that has since had this role transferred. I then run the following command on it net time /querysntp and it has a list of 4 ntp servers.
How do I enter in these ntp servers into the new 2012 PDCE and then shut them off on the old 2003 previous PDCE (so that it can be demoted and removed from active directory and shut down...without risking time drift and blowing up active directory Kerberos authentication)? I want the new PDCE to have the 4 NTP servers and be considered the new authoritative time source for all computers on the domain.
Thanks a lot for the help.
Resetting the Time Services: http:/Q_28597899.html#a40554687
Configuring a GPO with a WMI filter for Time Services: http:/Q_28597899.html#a40553961
By using a Group Policy with a WMI filter to configure your time services, you will essentially get the automatic migration of time services if you ever need to transfer the PDCe FSMO role again.