Having your time set up correctly is of crucial importance to the well-being of your Active Directory infrastructure. In every setup I do I ensure that my PDC Emulator FSMO holder synchs with an NTP server on the internet. Unless there are specific customer requirements I use pool.ntp.org as my external source. Here is how to configure your PDC Emulator to sync (all commands entered from an Administrative Command Prompt):
- Ensure that your firewall allows outbound NTP traffic from your PDC emulator
- Run w32tm /config /manualpeerlist:pool.ntp.org /syncfromflags:MANUAL /update
- Restart the time service: net stop w32time && net start w32time
- Force a synchronization with the newly added source: w32tm /resync
- Verify the source: w32tm /query /source
The rest of your domain clients should automatically synchronise with your PDC emulator. If this has been changed for whatever reason you can re-instate it with the following commands:
- w32tm /config /update /syncfromflags:DOMHIER
- net stop w32time && net start w32time
- w32tm /query /status
The above will go a long way to giving you a proper time-setup, and should be sufficient and accurate enough for most organisations
No comments:
Post a Comment