Link to home
Start Free TrialLog in
Avatar of Eprs_Admin
Eprs_AdminFlag for Austria

asked on

DC PDC and W32tm

Hi Experts,

I have just some questions regarding the correct setup for the PDC , its DNS settings and time settings.

Lets say I have a domain with 20 DCs.
DC1 is the PDC.

What is the best setup for the IP DNS settings on this DC1 ? Should I also enter the external DNS servers of my provider ?
What about the time configuration ? The PDC has to be configured to an external clock right ?
Avatar of Hayes Jupe
Hayes Jupe
Flag of Australia image

DC1, the same as all other DC's, should point to other DC's for its DNS.... this prevents what is called "DC island"

https://support.microsoft.com/en-au/help/275278/dns-server-becomes-an-island-when-a-domain-controller-points-to-itself

NTP - you are correct.... you dont have toi - but it is good practice to use an external time source on your PDC emulator holder - as that is the server used as a time source by default in the domain. See - https://docs.microsoft.com/en-us/windows-server/networking/windows-time-service/how-the-windows-time-service-works

I also have a blog article on this - https://blog.adexis.com.au/2018/12/05/windows-and-ntp/
Avatar of Eprs_Admin

ASKER

Hi,

I have a new PDC since 2 days.
The FSMO roles moved to DC201 , so this is the new PDC.

But when I check the whole domain with
w32tm /monitor
,

I can see each DC in the domain has the old DC as time source listed.

any ideas ?
you can force the machine(s) to be used if you wish - see the blog article down the bottom.
as far as why the machines havent automatically swapped over to the new PDCe - has the time service on the machines in question been restarted since the PDCe has been changed ? 2 days isnt very long.
Hi,

this command will not update the source

w32tm /config /syncfromflags:domhier /update


How to force it for the whole domain ?
ASKER CERTIFIED SOLUTION
Avatar of Hayes Jupe
Hayes Jupe
Flag of Australia image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I tried to restart w32time but its still connected to the old one.