NTP server on 2012

Hela Ahmadzai
Hela Ahmadzai used Ask the Experts™
on
Hello I have configured my PDC server as an NTP server to sync its time to NTP.org  zone servers and apply throw GPO but my clients in domain didn't sync their time with PDC when I run w32 time query status in client Pc it gives me error although I have give access of NTP.org  URL access to my PDC throw Sophps XG firewall please help
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Olgierd UngehojerSenior Network Administrator

Commented:
You should sync clients with domain controller not with external NTP server.
Open up UDP 123 outbound to any on your Sophos.
Source > protocol > destination
You internal server > NTP(UDP123) > Any.       Or
Any >  NTP > Any

Run using PowerShell as admin on your server.

w32tm /config /manualpeerlist:pool.ntp.org /syncfromflags:MANUAL
Stop-Service w32time
Start-Service w32time

If the machine is a VM inside Hyper-V, you have to disable time sync. Open VM settings -> Management -> Integration Services and uncheck Time Synchronization.

Run this command to check status of sync
w32tm /query /status
Forgot to add. This ...

To get your clients to check your internal ntp server you need to adjust dhcp option 042 NTP and add your internal server ip.

Configure Static Devices and Non-Windows Computers

Most devices, such as NAS and SAN equipment, have a place to enter NTP server information. For most Cisco IOS devices, enter “ntp server 192.168.25.5” or what ever you internal server up is at a config prompt. For non-Windows computers, consult the operating system’s documentation. In general, this type of equipment won’t be as concerned with the accuracy of its clock as Windows computers, so you may opt to skip this.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial