JSI Tip 2669. How do I configure an authoritative time server in Windows 2000?

Jerold Schulman

August 1, 2000

1 Min Read
ITPro Today logo

The Kerberos authentication protocol requires that all Windows 2000 computers in your enterprise use a common time. The Windows Time service, W32Time, insures appropriate common time usage.

Windows 2000 computers use the following default time partner hierarchy:

1. Clients and member servers use the authenticating domain controller, %LOGONSERVER%.

2. Domain controllers nominate the PDC FSMO.

3. The PDC FSMO at the root of the forest is authoritative for the enterprise.
    It should be configured to use the SNTP (Simple Network Time Protocol)
    to recognize an external time source using:

    net time /setsntp:

    To use the U.S. Naval Observatory:

    ntp2.usno.navy.mil at 192.5.41.209
    tock.usno.navy.mil at 192.5.41.41

    Example: net time /setsntp:192.5.41.41

NOTE: SNTP use port 123. See tip 2337.

NOTE: See tip 2273 - Windows 2000 registry entries for the W32Time service..

NOTE: If you can not use an external time source, use the PDC FSMO at the root of the forest.

NOTE: You may have to restart the PDC FSMO.


About the Author(s)

Jerold Schulman

Jerold Schulman

See more from Jerold Schulman
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

cloud-native
Cloud Native
How Cloud-Native Development Benefits SaaSHow Cloud-Native Development Benefits SaaS
byForrester Blog Network
Jun 28, 2024
3 Min Read
abstract string backgroud
PowerShell
Advanced String Manipulation Techniques in PowerShellAdvanced String Manipulation Techniques in PowerShell
byBrien Posey
Jun 28, 2024
3 Min Read
business person stamping a document
IT Operations
How to Get Executive Buy-In for IT ProjectsHow to Get Executive Buy-In for IT Projects
byChristopher Tozzi
May 28, 2024
6 Min Read