+ Post New Thread
Results 1 to 9 of 9
Windows Server 2000/2003 Thread, Time keeps going out of sync on domain controller. in Technical; Had another look at this as it went 12mins out of sync again today. We have 2 domain controllers, and ...
  1. #1

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    736
    Thank Post
    172
    Thanked 56 Times in 54 Posts
    Rep Power
    35

    Time keeps going out of sync on domain controller.

    Had another look at this as it went 12mins out of sync again today.

    We have 2 domain controllers, and have had issue with time sync occasionally since before I started here.

    The DC that holds the FSMO roles including the PDC emulator (still Server2003) is set up for type NT5DS (look at the domain for it's time). It has no NtpServer key.

    Since being here I have brought in a 2008 R2 after doing all the DCPROMO on the schema as per MS docs.

    The 2008 R2 as well as having the type set to NT5DS (look at the domain for it's time), has also got the NtpServer key set to time.windows.com,0x9.

    What does the 0x9 mean? and Shouldn't the DC with the PDC Emulator role have a NtpServer key set?

  2. #2

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,799
    Thank Post
    272
    Thanked 1,134 Times in 1,030 Posts
    Rep Power
    349
    You will need to setup the PDC to get its time from an external time source - normally RBC's provide time servers and things like time.windows.com are blocked.

    You will need to run something like "w32tm /config /manualpeerlist:”time.windows.com” /syncfromflags:manual /reliable:yes /update"

    replacing time.windows.com with your time server whether it be the RBC's or use ntp.org's (as i do on all my clients). 0.pool.ntp.org

    you will then need to run "net stop w32tm" and net start "W32tm"


    EDIT: if your servers are virtual make sure your host gets its time from the external source as well otherwise the host and DC get the time from each other causing issues
    Last edited by glennda; 20th September 2012 at 04:00 PM.

  3. Thanks to glennda from:

    Davit2005 (21st September 2012)

  4. #3

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    736
    Thank Post
    172
    Thanked 56 Times in 54 Posts
    Rep Power
    35
    Quote Originally Posted by glennda View Post
    You will need to setup the PDC to get its time from an external time source - normally RBC's provide time servers and things like time.windows.com are blocked.

    You will need to run something like "w32tm /config /manualpeerlist:”time.windows.com” /syncfromflags:manual /reliable:yes /update"

    replacing time.windows.com with your time server whether it be the RBC's or use ntp.org's (as i do on all my clients). 0.pool.ntp.org

    you will then need to run "net stop w32tm" and net start "W32tm"


    EDIT: if your servers are virtual make sure your host gets its time from the external source as well otherwise the host and DC get the time from each other causing issues
    Yep the DC's are all virtual so have setup 4 NTP Servers on each host 0.pool.ntp.org,1.pool.ntp.org,2.pool.ntp.org,3.poo l.ntp.org

    Looking at doing the PDC Emulator next but not sure what to do about the other DC, is it possible to have a backup ntp setup or is it not really needed?

  5. #4

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,929
    Thank Post
    860
    Thanked 1,436 Times in 987 Posts
    Blog Entries
    47
    Rep Power
    615
    Don't use 0.pool.ntp.org etc. - use 0.uk.pool.ntp.org etc.

    pool.ntp.org: NTP Servers in United Kingdom, uk.pool.ntp.org

  6. Thanks to sonofsanta from:

    Davit2005 (21st September 2012)

  7. #5
    adhutton's Avatar
    Join Date
    Dec 2008
    Location
    Northeast England
    Posts
    399
    Thank Post
    164
    Thanked 86 Times in 64 Posts
    Rep Power
    54

  8. Thanks to adhutton from:

    Davit2005 (21st September 2012)

  9. #6

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    736
    Thank Post
    172
    Thanked 56 Times in 54 Posts
    Rep Power
    35
    Quote Originally Posted by sonofsanta View Post
    Don't use 0.pool.ntp.org etc. - use 0.uk.pool.ntp.org etc.

    pool.ntp.org: NTP Servers in United Kingdom, uk.pool.ntp.org
    Yep have used uk.pool.ntp.org, you spotted my typo, it's being a lonk week

  10. #7

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,929
    Thank Post
    860
    Thanked 1,436 Times in 987 Posts
    Blog Entries
    47
    Rep Power
    615
    Quote Originally Posted by Davit2005 View Post
    Yep have used uk.pool.ntp.org, you spotted my typo, it's being a lonk week
    A lonk week, huh?

    uk.pool.ntp.org seems to be 2 minutes ahead of what Google tells me GMT is, though, which is making all the computers out of line with bells etc. Anyone else getting this?

  11. Thanks to sonofsanta from:

    Davit2005 (21st September 2012)

  12. #8

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,799
    Thank Post
    272
    Thanked 1,134 Times in 1,030 Posts
    Rep Power
    349
    Quote Originally Posted by Davit2005 View Post
    Yep the DC's are all virtual so have setup 4 NTP Servers on each host 0.pool.ntp.org,1.pool.ntp.org,2.pool.ntp.org,3.poo l.ntp.org

    Looking at doing the PDC Emulator next but not sure what to do about the other DC, is it possible to have a backup ntp setup or is it not really needed?
    As long as the PDC has the correct time it should be authoritve over the secondary DC - which means the second DC should sync from the PDC.

    Just make sure when using the Pools that you can actually get out on the correct ports as all well and good pointing servers to the pools but if they cannot contact they will just fail but not tell you

  13. Thanks to glennda from:

    Davit2005 (21st September 2012)

  14. #9

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,929
    Thank Post
    860
    Thanked 1,436 Times in 987 Posts
    Blog Entries
    47
    Rep Power
    615
    Quote Originally Posted by sonofsanta View Post
    uk.pool.ntp.org seems to be 2 minutes ahead of what Google tells me GMT is, though, which is making all the computers out of line with bells etc. Anyone else getting this?
    Yeah, turns out I'm an idiot and forgot that the DC doing the time thing is, of course, virtual. Setting the virtual hosts to sync from ntp as well means everything is now nicely on time.

SHARE:
+ Post New Thread

Similar Threads

  1. Run out of space on Server C drive!
    By phantomphan in forum Wireless Networks
    Replies: 39
    Last Post: 22nd June 2011, 01:03 PM
  2. Admin Network out of date on install
    By ICT_GUY in forum Windows
    Replies: 19
    Last Post: 12th March 2010, 01:22 PM
  3. Replies: 22
    Last Post: 1st March 2010, 12:53 PM
  4. Running out of space on your storage server?
    By rad in forum How do you do....it?
    Replies: 4
    Last Post: 9th February 2010, 03:59 PM
  5. Locked Out Of Windows XP Domain Machine
    By mrcrazy04 in forum Windows
    Replies: 9
    Last Post: 15th March 2007, 05:54 PM

Thread Information

Users Browsing this Thread

There are currently 2 users browsing this thread. (0 members and 2 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •