This post is about how to process a Windows Server 2012 or 2016 domain controller to synchronize its time with a trusted external resource. Having a valid and accurate time source is critical for a properly configured domain.
Use your favorite search engine to locate the trusted NTP time servers for your area. I am located in Canada and so I will be using
0.ca.pool.ntp.org
1.ca.pool.ntp.org
2.ca.pool.ntp.org
3.ca.pool.ntp.org
Log into your domain controller with administrative credentials and launch a command prompt.
Stop the time service:
net stop w32time
Enter the following to configure your NTP time servers:
w32tm /config /syncfromflags:manual /manualpeerlist:"0.ca.pool.ntp.org, 1.ca.pool.ntp.org, 2.ca.pool.ntp.org, 3.ca.pool.ntp.org"
and then hit Enter. Remember to use your time servers in place of *.ca.pool.ntp.org.
Let the domain controller know that these are your trusted servers:
w32tm /config /reliable:yes
Restart the Time Service:
net start w32time
Review the results:
w32tm /query /configuration
Ensure everything is proper and typed correctly and...