+ Post New Thread
Results 1 to 9 of 9
Windows Server 2000/2003 Thread, Time keeps going out of sync on domain controller. in Technical; Had another look at this as it went 12mins out of sync again today. We have 2 domain controllers, and ...
  1. #1

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    672
    Thank Post
    155
    Thanked 51 Times in 49 Posts
    Rep Power
    33

    Time keeps going out of sync on domain controller.

    Had another look at this as it went 12mins out of sync again today.

    We have 2 domain controllers, and have had issue with time sync occasionally since before I started here.

    The DC that holds the FSMO roles including the PDC emulator (still Server2003) is set up for type NT5DS (look at the domain for it's time). It has no NtpServer key.

    Since being here I have brought in a 2008 R2 after doing all the DCPROMO on the schema as per MS docs.

    The 2008 R2 as well as having the type set to NT5DS (look at the domain for it's time), has also got the NtpServer key set to time.windows.com,0x9.

    What does the 0x9 mean? and Shouldn't the DC with the PDC Emulator role have a NtpServer key set?

  2. #2

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,714
    Thank Post
    269
    Thanked 1,116 Times in 1,012 Posts
    Rep Power
    345
    You will need to setup the PDC to get its time from an external time source - normally RBC's provide time servers and things like time.windows.com are blocked.

    You will need to run something like "w32tm /config /manualpeerlist:”time.windows.com” /syncfromflags:manual /reliable:yes /update"

    replacing time.windows.com with your time server whether it be the RBC's or use ntp.org's (as i do on all my clients). 0.pool.ntp.org

    you will then need to run "net stop w32tm" and net start "W32tm"


    EDIT: if your servers are virtual make sure your host gets its time from the external source as well otherwise the host and DC get the time from each other causing issues
    Last edited by glennda; 20th September 2012 at 04:00 PM.

  3. Thanks to glennda from:

    Davit2005 (21st September 2012)

  4. #3

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    672
    Thank Post
    155
    Thanked 51 Times in 49 Posts
    Rep Power
    33
    Quote Originally Posted by glennda View Post
    You will need to setup the PDC to get its time from an external time source - normally RBC's provide time servers and things like time.windows.com are blocked.

    You will need to run something like "w32tm /config /manualpeerlist:”time.windows.com” /syncfromflags:manual /reliable:yes /update"

    replacing time.windows.com with your time server whether it be the RBC's or use ntp.org's (as i do on all my clients). 0.pool.ntp.org

    you will then need to run "net stop w32tm" and net start "W32tm"


    EDIT: if your servers are virtual make sure your host gets its time from the external source as well otherwise the host and DC get the time from each other causing issues
    Yep the DC's are all virtual so have setup 4 NTP Servers on each host 0.pool.ntp.org,1.pool.ntp.org,2.pool.ntp.org,3.poo l.ntp.org

    Looking at doing the PDC Emulator next but not sure what to do about the other DC, is it possible to have a backup ntp setup or is it not really needed?

  5. #4

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,468
    Thank Post
    751
    Thanked 1,211 Times in 853 Posts
    Blog Entries
    45
    Rep Power
    534
    Don't use 0.pool.ntp.org etc. - use 0.uk.pool.ntp.org etc.

    pool.ntp.org: NTP Servers in United Kingdom, uk.pool.ntp.org

  6. Thanks to sonofsanta from:

    Davit2005 (21st September 2012)

  7. #5
    adhutton's Avatar
    Join Date
    Dec 2008
    Location
    Northeast England
    Posts
    395
    Thank Post
    164
    Thanked 86 Times in 64 Posts
    Rep Power
    53

  8. Thanks to adhutton from:

    Davit2005 (21st September 2012)

  9. #6

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    672
    Thank Post
    155
    Thanked 51 Times in 49 Posts
    Rep Power
    33
    Quote Originally Posted by sonofsanta View Post
    Don't use 0.pool.ntp.org etc. - use 0.uk.pool.ntp.org etc.

    pool.ntp.org: NTP Servers in United Kingdom, uk.pool.ntp.org
    Yep have used uk.pool.ntp.org, you spotted my typo, it's being a lonk week

  10. #7

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,468
    Thank Post
    751
    Thanked 1,211 Times in 853 Posts
    Blog Entries
    45
    Rep Power
    534
    Quote Originally Posted by Davit2005 View Post
    Yep have used uk.pool.ntp.org, you spotted my typo, it's being a lonk week
    A lonk week, huh?

    uk.pool.ntp.org seems to be 2 minutes ahead of what Google tells me GMT is, though, which is making all the computers out of line with bells etc. Anyone else getting this?

  11. Thanks to sonofsanta from:

    Davit2005 (21st September 2012)

  12. #8

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,714
    Thank Post
    269
    Thanked 1,116 Times in 1,012 Posts
    Rep Power
    345
    Quote Originally Posted by Davit2005 View Post
    Yep the DC's are all virtual so have setup 4 NTP Servers on each host 0.pool.ntp.org,1.pool.ntp.org,2.pool.ntp.org,3.poo l.ntp.org

    Looking at doing the PDC Emulator next but not sure what to do about the other DC, is it possible to have a backup ntp setup or is it not really needed?
    As long as the PDC has the correct time it should be authoritve over the secondary DC - which means the second DC should sync from the PDC.

    Just make sure when using the Pools that you can actually get out on the correct ports as all well and good pointing servers to the pools but if they cannot contact they will just fail but not tell you

  13. Thanks to glennda from:

    Davit2005 (21st September 2012)

  14. #9

    sonofsanta's Avatar
    Join Date
    Dec 2009
    Location
    Lincolnshire, UK
    Posts
    4,468
    Thank Post
    751
    Thanked 1,211 Times in 853 Posts
    Blog Entries
    45
    Rep Power
    534
    Quote Originally Posted by sonofsanta View Post
    uk.pool.ntp.org seems to be 2 minutes ahead of what Google tells me GMT is, though, which is making all the computers out of line with bells etc. Anyone else getting this?
    Yeah, turns out I'm an idiot and forgot that the DC doing the time thing is, of course, virtual. Setting the virtual hosts to sync from ntp as well means everything is now nicely on time.

SHARE:
+ Post New Thread

Similar Threads

  1. Run out of space on Server C drive!
    By phantomphan in forum Wireless Networks
    Replies: 39
    Last Post: 22nd June 2011, 01:03 PM
  2. Admin Network out of date on install
    By ICT_GUY in forum Windows
    Replies: 19
    Last Post: 12th March 2010, 01:22 PM
  3. Replies: 22
    Last Post: 1st March 2010, 12:53 PM
  4. Running out of space on your storage server?
    By rad in forum How do you do....it?
    Replies: 4
    Last Post: 9th February 2010, 03:59 PM
  5. Locked Out Of Windows XP Domain Machine
    By mrcrazy04 in forum Windows
    Replies: 9
    Last Post: 15th March 2007, 05:54 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •