Skip to main content

How to configure a time server in a Windows Server environment

It took a while before I figured out the right combination to sync my network users to our Active Directory

Here's a few tip for you to check before you configure your time server.

  • Make sure that you allow NTP (port 123 Network Time Protocol) in your network to go out. Here's how to test if your server can communicate to the NTP outside your network. Open a command prompt (click Start, Run, type "CMD" [Enter]). In command prompt, type w32tm /monitor /computers:time.nist.gov [Enter]. It will return a xx ms delay.
  • Then follow the step by step instruction from Microsoft website on how to configure the Windows Time service to use an external time source.http://support.microsoft.com/kb/816042
  • Remember to restart your Windows Time service. In command prompt, type net stop w32time && net start w32time [Enter]. This will stop and restart the service.
  • To tell a system's W32Time service to get it's time from the Active Directory. In command prompt, type w32tm /config /syncfromflags:domhier /update [Enter]. For additonal w32tm command line, type w32tm /? [Enter]
This will resolve your windows time service problem.

Additional information. If you need to see the FSMO PDC, run this command in your Active Directory server. In AD server command prompt, type netdom query fsmo [Enter] this will provide the list of your network Schema owner, Domain role owner, PDC role, RID pool manager, and Infrastructure owner.

Join us in ITRescue.com community.

Comments

Popular posts from this blog

Alternative Social Networks

If you are planning to create your  social network  e.g. similar to Facebook. Here's a short list of alternative software's: Open Source and Free​ http://buddypress.org/  - Wordpress (Open Source and Free) http://elgg.org/  - (Open Source and Free) Commercial Social Networks software http://www.socialengine.com/  ($299 Stand Alone, $29/mo Cloud) http://www.jomsocial.com/  (run with Joomla, need to know CMS) http://www.boonex.com/  (very expensive, $399 for Standard) http://www.anahitapolis.com/ http://www.oxwall.org/ http://sharetronix.com/ http://www.moosocial.com/ http://www.jcow.net/ http://phpdolphin.com http://www.grou.ps  (from free to Commercial, I left my networks and they are selling it  http://www.phpfox.com/  (I used this before, it's hard to maintain. I moved to NING but left too after it was sold to another company) http://www.ning.com  (I don't recommend using this service, it's hard to export your data when it's time to move) S

Learning Vulnerability Scanning by KING.NET

Learning Vulnerability Scanning is fun and easy. So I hope you enjoy reading this short how to guide on how to use vulnerability scanning to secure your servers and networks. NMAP is the swiss tool that you need to learn if you're serious in Cyber Security profession. The NMAP tool can be use with NSE scripting (Nmap Scripting Engine) to automate your tasks. For example using NSE Script using a  single vulnerability (cold fusion)  to scan our test lab machine. root@kali:~# nmap -v -p 80  --script http-vuln-cve2010-2861  10.11.1.220 Starting Nmap 6.47 ( http://nmap.org ) at 2016-07-22 17:34 EDT NSE: Loaded 1 scripts for scanning. NSE: Script Pre-scanning. Initiating ARP Ping Scan at 17:34 Scanning 10.11.1.220 [1 port] Completed ARP Ping Scan at 17:34, 0.04s elapsed (1 total hosts) Initiating Parallel DNS resolution of 1 host. at 17:34 Completed Parallel DNS resolution of 1 host. at 17:35, 13.01s elapsed Initiating SYN Stealth Scan at 17:35 Scanning 10.11.1.220 [1 port] Comp