What time is it? Keeping your domain on time

How many times have you reviewed the contents of the system event log and discovered numerous W32Time service error details? All too often, this indicates that your domain controller is no longer able to access a time authority server with which to synchronize. By default, every time a server boots, it attempts to synchronize its time code with an authority in the domain. By design, the domain controller serving as the PDC emulator is the authority on time for a domain. Thus, it is important to ensure that your PDC emulator domain controller is able to access an Internet timeserver.

In order to do this, you first need to verify or locate the domain controller serving as the PDC emulator. This can be quickly accomplished by issuing the following command from a Command Prompt: dsquery server –hasfsmo pdc.

This command will produce the fully qualified name of the server that is hosting the PDC emulator FSMO role.

From the PDC emulator, you can set the Internet time authority with whom the domain controller should synchronize with on a regular basis. This is done using the command: net time /setsntp:<server>.

Replace <server> with the domain name or IP address of a trusted Internet based time authority server. The U.S. Naval Observatory is considered to be the office time source for the United States. Public access to this time server is possible using either of the following domain names: ntp2.usno.navy.mil

Requires Free Membership to View

and tock.usno.navy.mil.

To locate other timeservers, just search the Internet using keywords of "time server" or "sntp."

Keep in mind that the time synchronization utility will contact the Internet based timeserver system over UDP port 123. Make sure this port is opened for communications across your firewall or other communications border security device.

James Michael Stewart is a partner and researcher for ITinfopros, a technology-focused writing and training organization.

This was first published in October 2003

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.