Feb 02 2021
I maintain existing solutions, almost never setting up an entire new network.
One of my customers has three DC's (DC1, DC2, DC3).When running nltest /dsgetdc:<DomName> /timeserv on the servers I'm getting different results. Some times pointing to DC1, some times DC3.
W32tm /query /source also gives varying results, some looking to free running clock, some to a DC, some to CMOS.I've read this MS article about network time servers.
The customer's Default Domain Controller Policy (group policy) has the following settings enabled- Configure Windows NTP Client
- Enable Windows NTP Client
- Enable Windows NTP Server
With the settings in place, on the Default Domain Controller Policy (which is applied to each of the DC), wouldn't it make each DC fight over who is the time server for the domain?Thank you in advance.
Feb 02 2021
Some general info- All domain members should use NT5DS domain time. - Desktops and member servers sync with any domain controller. - Domain controllers sync with PDC emulator (one per domain) - PDC emulator in child domain can sync with any domain controller in parent domain. - PDC emulator in parent domain syncs with either a hardware clock or possibly an external source.https://blogs.technet.microsoft.com/nepapfe/2013/03/01/its-simple-time-configuration-in-active-direc...