Setting up a NTP server
Im looking to set one of our servers as a NTP server and then point our sophos web filtering box to that server as it keeps losing sync.
Iv looked around the net but all i can find is reg edits to do this on standalone machines. Is it possible to have a server that points to uk.pool.ntp.org and then is a NTP server itself.
There's plenty on the web about this - look up 'time server'. You could start with this: Configure the Windows Time service on the PDC emulator in the Forest Root Domain
Beware if you're using virtual DCs as it's easy to get into a loop if you sync your virtual host from your virtual DC (I know as it happened to me).
If you locate the Domain Controller configured for PDC Emulator FSMO role and run the commands below;
net stop w32time
w32tm /config /manualpeerlist:0.uk.pool.ntp.org,0x8, /syncfromflags:manual /update
net start w32time
Also ensure that outbound NTP (UDP port 123) is enabled on your firewall.
All computers that are members of that domain are configured by default to synchronize from this DC and you should also be able to use this as an NTP server itself that Sophos Web Filtering box points to.
Hope this helps.
Technical Solutions & Pre-Sales Manager