Article Directory :: Computers & Technology Articles

Configuring An Authoritative Time Server On A Windows 2000 Server

By David Evans

Subscribe to David Evans's RSS feed using any feed reader!

Republish: EasyPublish
Published: 23Oct2007
Word count: 722
Viewed: 298 time(s)
Bookmark this article using any bookmark manager!
Get Free Content For Your Site

The Windows 2000 Server operating system includes a time synchronisation service called w32time or ‘Windows Time’. The service is installed by default and runs continuously in the service list. The time service is required by the Kerberos authentication protocol to ensure all computers running in a Windows 2000 environment utilise a common shared time. This article describes how to set up and configure an Authoritative Time Server in a Windows 2000 Server environment. It also discusses the hierarchical relationship at the heart of the service and provides some configuration hints and tips.

The Windows Time Synchronisation Hierarchy The Windows 2000 time service utilises a hierarchical synchronisation structure: Desktop workstations and Member Servers nominate their domain controller as the source of time; Domain controllers nominate the PDC as their source of time synchronisation, but may also utilise a parent domain controller; PDC’s follow the hierarchy of domains in the selection of their time synchronisation source.

In the hierarchy the PDC emulator in the forest root domain is the primary time reference for the organisation. The PDC in the forest root domain can have its internal reference clock controlled in a number of ways:

- By utilising it’s own internal hardware system clock

- By synchronising to an Internet based NTP time server.

- By synchronising with a local intranet based NTP time server or hardware reference clock.

- By utilising a hardware reference clock.

Each of these methods of synchronisation described above raises a number of issues.

A PDC utilising it’s own internal unsynchronised hardware system clock will drift significantly over time, transactions cannot be referenced to a traceable source of time.

A PDC synchronising to an Internet based NTP time server can obtain accurate time. However, this raises security issues since the NTP port in the firewall must be left open for synchronisation. Also, Internet based NTP servers cannot provide authentication, so the source of time cannot be guaranteed.

Many of the above issues can be solved yy synchronising a PDC with a local intranet based NTP time server or hardware clock. A local NTP server or hardware clock has the advantage of providing a traceable time reference and also secure authentication.

The Windows 2000 Time Service Configuration.

Configuration of the Windows 2000 Time Service is carried out by editing registry entries. It is highly recommended that the registry be backed up before conducting any modifications. This allows the registry to be restored in the event of erroneous modification.

To configure the PDC master to utilise its internal system clock requires only that the W32Time registry entry ‘HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Config\AnnounceFlags’ is set to ‘A’. This makes the PDC announce itself as a reliable time source. However, the system clock can drift over time and is not referenced to an accurate time source. Additionally, Windows Time will periodically generate system event log warnings indicating that the PDC should be configured to synchronise to an external time source. This warning can be ignored.

To configure the PDC to to synchronise to an external time reference, a number of registry entries must be modified. The windows time service registry settings are stored in the registry at ‘HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Parameters\’.

The ‘Type’, ‘Reliable Time Source’ and ‘Local NTP’ parameters must be set to the value ‘1’. The ‘NTP Server’ parameter must be set to a list of space delimited NTP server peers that the computer is to synchronise to. The ‘MaxAllowedClockErrInSecs’ indicates the maximum number of seconds between the system time and received times that the received time is to be considered a valid new time. The ‘Period’ parameter indicates the frequency with which the time service is to synchronise.

After the registry entries have been correctly modified, the Windows Time service must be stopped and restarted. At a command prompt enter ‘net stop w32time && net start w32time’ to restart the service.

Hints and Tips.

The correct operation of the Windows Time service depends heavily on the correct functioning of network devices and infrastructure. Common problems such as TCP/IP connectivity, DNS resolution, inaccurate NTP time references and network delay can all cause problems with the synchronisation service. Additionally, when synchronising to an Internet NTP server, ensure that USP port 123 is open on the firewall. UDP port 123 is the port reserved for NTP communication packets.

Dave Evans is an experienced technical author with a background in NTP Time Server solutions and telecommunications. Dave provides a technical authoring service to NTP reference clock and NTP server manufacturers. Click here to find out more about Windows 2000 time server systems.

Bookmark this article using any bookmark manager! Subscribe to David Evans's RSS feed using any feed reader!

EasyPublish™ this article - publishers click here

More articles by David Evans

Free Report!
Ten Essential Secrets Of Article Marketing ... Grab Your Free
Copy Now:




We respect your privacy.

Need Content?
Regular Top Quality Content for your Blog, Ezine or Website ...
Delivered Direct,
For Free!
Click For Details


Arts & Entertainment
Automotive
Business - General
Computers & Technology
Finance & Investment
Food & Drink
Health & Fitness
Home & Family
Internet Marketing/Online Business
Legal
Pets & Animals
Politics & Government
Reference & Education
Religion & Faith
Self-Improvement/Motivation
Social
Sports & Recreation
Travel & Leisure
Writing & Speaking

More computing articles:

  • Casio Watches: A History of Trend Setting (Paul Wise)
    A small history of Casio Watches and their many popular watch models and lines .

  • IP Cameras in Traffic Environments: Advantages, Risks and Configuration Advice (Wes Fernley)
    In today's fast paced world, it's more important than ever to have proper traffic and road video surveillance. One of the best options are IP cameras which function as a closed video surveillance system but have the additional feature of being able to work online.

  • Get Full Details On Who Owns Any Phone Number With This Free Reverse Phone Search (Grant Dougan)
    If you ever need to determine who owns a particular telephone number you need to use what is called a reverse phone number search. Using a reverse phone lookup will get you full information about the owner of the telephone, including their full name along with other details. In this article we are going to show you how it works.

  • Protect your Liquor Store with IP Camera Surveillance (Wes Fernley)
    Unfortunately, liquor stores have a high susceptibility to theft and shrinkage. However, using a proper surveillance system can prevent a great deal of this loss from occurring. A properly installed, state of the art surveillance system will protect your business from internal and external theft.

  • How Can I Download Playstation 3 Games Online? Here's How - It's Incredibly Easy! (Grant Dougan)
    If you have a PS3, then you already know how impressive of a gaming machine it is! They keep flying off the shelves and there's lots of spectacular games that keep being created. Today we wanted to show you how you can find PS3 game downloads online and then use them on your PS3.

  • Legal Implications Of Blog & Forum Postings (Terry S Vostor)
    It is not only authorities in the media - newspapers and TV / radio who have to be concerned about the legalities of libel and slander laws in the broadcasting and editorialization of views and information. Running a website , a forum or a blog involves currently involves such risks as well. Prudence and caution are the watchwords.

  • Kinetic Energy: Harnessing the Energy Naturally Created By Our Own Bodies (Ezra Drissman)
    Kinetic energy is formed whenever we move around we drive around. Harnessing that power by various forms of technology allows that energy to be transformed into electrical power and used for a number of applications. It is happening at this very time in various locations and in many ways.

  • Recharging Batteries to Save Money, and Better Than Buying New (Ezra Drissman)
    People have a great many batteries in their homes and their cost is even greater. The cost, however, of buying non-rechargeable batteries for our toys, games and small appliances goes far beyond money because the question arises of how to dispose of dead batteries.

  • Here's An Easy Way To Copy Wii Games Whenever You Want! (Grant Dougan)
    Numerous Wii owners have asked themselves if it's possible to burn Wii disks. This inquiry has been raised many times so today we are going to show you how it can be done. It's actually an incredibly easy thing to do once you have the right tools on your computer - let's take a look!

We Automatically Distribute Articles
To Thousands Of Publishers And Web Sites:
Submit Article
All content is viewed and used by you at your own risk and we do not warrant the accuracy or reliability of any of the information. The views expressed are those of the individual contributing authors and not necessarily those of this web site, or its owner, Takanomi Limited.
  
Copyright © 2009 Takanomi Ltd. Company no. 5629683. All rights reserved. | Privacy | Legal | Contact Information