To configure an internal time server to synchronize with an external time source,
Note For a list of available time servers, see Microsoft Knowledge Base article
262680: A list of the Simple Network Time Protocol (SNTP) time servers that are available on the Internet
Automatically configure the Windows Time service
To fix this problem automatically, click the Download button. In the File Download dialog box, select Runor Open, and then follow the steps in the easy fix wizard.
- When you run the easy fix solution to configure an external time source you will need to
specify the name of your NTP server. The easy fix solution will have the placeholder names
of Server1 and Server2. Replace these placeholder names with the name of your NTP
server followed by “,0x1”. i.e SRV1.Contoso.com,0x1. You do not have to specify more
than one server but it is recommended to do so for redundancy. If you have multiple entries
they must be separated by a space. - The unit of time for SpecialPollInterval,MaxPosPhaseCorrectionand MaxNegPhaseCorrection settings is in seconds.
- This wizard may be in English only. However, the automatic fix also works for other language versions of Windows.
- If you’re not on the computer that has the problem, save the easy fix solution to a flash
drive or a CD, and then run it on the computer that has the problem.
Manually configure the Windows Time service
To configure an internal time server to synchronize with an external time source, follow these steps:
- Change the server type to NTP. To do this, follow these steps:
- Select Start > Run, type regedit, and then select OK.
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
Parameters\Type - In the pane on the right, right-click Type, and then select Modify.
- In Edit Value, type NTP in the Value data box, and then select OK.
- Set AnnounceFlags to 5. To do this, follow these steps:
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
Config\AnnounceFlags - In the pane on the right, right-click AnnounceFlags, and then select Modify.
- In Edit DWORD Value, type 5 in the Value data box, and then select OK.Notes
- If an authoritative time server that is configured to use an AnnounceFlag value of
0x5 does not synchronize with an upstream time server, a client server may not correctly synchronize with the authoritative time server when the time
synchronization between the authoritative time server and the upstream time
server resumes. Therefore, if you have a poor network connection or other
concerns that may cause time synchronization failure of the authoritative server
to an upstream server, set the AnnounceFlag value to 0xA instead of to 0x5.
- If an authoritative time server that is configured to use an AnnounceFlag value
of 0x5 and to synchronize with an upstream time server at a fixed interval that is specified in SpecialPollInterval, a client server may not correctly synchronize with
the authoritative time server after the authoritative time server restarts. Therefore,
if you configure your authoritative time server to synchronize with an upstream
NTP server at a fixed interval that is specified in SpecialPollInterval, set the AnnounceFlag value to 0xA instead of 0x5.
- If an authoritative time server that is configured to use an AnnounceFlag value of
- Locate and then click the following registry subkey:
- Enable NTPServer. To do this, follow these steps:
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
TimeProviders\NtpServer - In the pane on the right, right-click Enabled, and then select Modify.
- In Edit DWORD Value, type 1 in the Value data box, and then select OK.
- Locate and then click the following registry subkey:
- Specify the time sources. To do this, follow these steps:
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
Parameters - In the pane on the right, right-click NtpServer, and then select Modify.
- In Edit Value, type Peers in the Value data box, and then select OK.Note Peers is a placeholder for a space-delimited list of peers from which
your computer obtains time stamps. Each DNS name that is listed must be unique.You must append ,0x1 to the end of each DNS name. If you do not append ,0x1 to
the end of each DNS name, the changes that you make in step 5 will not take effect.
- Locate and then click the following registry subkey:
- Configure the time correction settings. To do this, follow these steps:
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
Config\MaxPosPhaseCorrection - In the pane on the right, right-click MaxPosPhaseCorrection, and then select Modify.
- In Edit DWORD Value, click to select Decimal in the Base box.
- In Edit DWORD Value, type TimeInSeconds in the Value data box, and then select OK.Note
- TimeInSeconds is a placeholder for a reasonable value, such as 1 hour (3600)
or 30 minutes (1800). The value that you select will depend on the poll interval, network condition, and external time source. - The default value of MaxPosPhaseCorrection is 48 hours in Windows Server 2008
R2 or later.
- TimeInSeconds is a placeholder for a reasonable value, such as 1 hour (3600)
- Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\
Config\MaxNegPhaseCorrection - In the pane on the right, right-click MaxNegPhaseCorrection, and then select Modify.
- In Edit DWORD Value, click to select Decimal in the Base box.
- In Edit DWORD Value, type TimeInSeconds in the Value data box, and then select OK.Note
- TimeInSeconds is a placeholder for a reasonable value, such as 1 hour (3600)
or 30 minutes (1800). The value that you select will depend on the poll interval, network condition, and external time source. - The default value of MaxNegPhaseCorrection is 48 hours in Windows Server 2008 R2 or later.
- TimeInSeconds is a placeholder for a reasonable value, such as 1 hour (3600)
- Locate and then click the following registry subkey:
- Close Registry Editor.
- At the command prompt, type the following command to restart the Windows Time service,
and then press Enter:net stop w32time && net start w32time
262680: A list of the Simple Network Time Protocol (SNTP) time servers that are available on the Internet
Troubleshooting
For the Windows Time service to function correctly, the networking infrastructure must function
correctly. The most common problems that affect the Windows Time service include the following:
correctly. The most common problems that affect the Windows Time service include the following:
- There is a problem with TCP/IP connectivity, such as a dead gateway.
- The Name Resolution service is not working correctly.
- The network is experiencing high volume delays, especially when synchronization
occurs over high-latency wide area network (WAN) links. - The Windows Time service is trying to synchronize with inaccurate time sources.
We recommend that you use the Netdiag.exe utility to troubleshoot network-related issues.
Netdiag.exe is part of the Windows Server 2003 Support Tools package. See Tools Help for
a complete list of command-line parameters that you can use with Netdiag.exe. If your problem
is still not solved, you can turn on the Windows Time service debug log. Because the debug
log can contain very detailed information, we recommend that you contact Microsoft Customer
Support Services when you turn on the Windows Time service debug log.
For a complete list of Microsoft Customer Support Services telephone numbers and information
about support costs, go to the Contact Microsoft website.
Netdiag.exe is part of the Windows Server 2003 Support Tools package. See Tools Help for
a complete list of command-line parameters that you can use with Netdiag.exe. If your problem
is still not solved, you can turn on the Windows Time service debug log. Because the debug
log can contain very detailed information, we recommend that you contact Microsoft Customer
Support Services when you turn on the Windows Time service debug log.
For a complete list of Microsoft Customer Support Services telephone numbers and information
about support costs, go to the Contact Microsoft website.
if a Microsoft Support Professional determines that a specific update will resolve your problem.
The usual support costs will apply to additional support questions and issues that do not qualify
for the specific update in question. WAZOO.
More Information
Windows Server includes W32Time, the Time Service tool that is required by the Kerberos
authentication protocol. The Windows Time service makes sure that all computers in an
organization that are running the Microsoft Windows 2000 Server operating system or later
versions use a common time.
To guarantee appropriate common time usage, the Windows Time service uses a hierarchical
relationship that controls authority, and the Windows Time service does not allow for loops. By
default, Windows-based computers use the following hierarchy:
authentication protocol. The Windows Time service makes sure that all computers in an
organization that are running the Microsoft Windows 2000 Server operating system or later
versions use a common time.
To guarantee appropriate common time usage, the Windows Time service uses a hierarchical
relationship that controls authority, and the Windows Time service does not allow for loops. By
default, Windows-based computers use the following hierarchy:
- All client desktop computers nominate the authenticating domain controller as their in-bound
time partner. - All member servers follow the same process that client desktop computers follow.
- All domain controllers in a domain nominate the primary domain controller (PDC) operations
master as their in-bound time partner. - All PDC operations masters follow the hierarchy of domains in the selection of their in-bound
time partner.
In this hierarchy, the PDC operations master at the root of the forest becomes authoritative for the organization. We highly recommend that you configure the authoritative time server to obtain the
time from a hardware source. When you configure the authoritative time server to sync with an
Internet time source, there is no authentication. We also recommend that you reduce your time
correction settings for your servers and stand-alone clients. These recommendations provide more accuracy and security to your domain.
time from a hardware source. When you configure the authoritative time server to sync with an
Internet time source, there is no authentication. We also recommend that you reduce your time
correction settings for your servers and stand-alone clients. These recommendations provide more accuracy and security to your domain.
References
For more information about Windows Time service, see the following Microsoft Knowledge
Base articles:
Windows Time Service Technical Reference.
Base articles:
- 816043: How to turn on debug logging in the Windows Time service
- 884776: Configuring the Windows Time service against a large time offset
- 321708: How to use the Network Diagnostics Tool (Netdiag.exe) in Windows 2000
- 314054: How to configure an authoritative time server in Windows XP
- 216734: How to configure an authoritative time server in Windows 2000
Windows Time Service Technical Reference.
Комментариев нет:
Отправить комментарий