In a domain the DC with the PDCEmulator FSMO is the time source for all domain member machines, DC sync with that one and all other domain members sync with an available DC. Therefore make sure no firewall is blocking port 123 UDP on all machines.
Time displayed on the computers are for humans, internally all the client computers/member server/domain controllers will follow UTC Timing conventions.
You should understand the hierarchy.
If possible the PDCEmulator should sync to a NOT domain machine or NTP server, this can be configured with:
w32tm /config /manualpeerlist:PEERS /syncfromflags:manual /reliable:yes /update
With “PEERS” you can set the time source, either DNS name (time.windows.com) or an ip address from a reliable time source.
Here you can find some of them:
http://www.pool.ntp.org/
To reconfigure the domain members for the domain hierarchie run:
w32tm /config /syncfromflags:domhier /update
After that run:
net stop w32time net start w32time
Or you should run below command line on problematic system , to reset the time service:
- Type CMD in the run windows - Type Net stop w32time to stop the time service - Type W32tm /unregister to unregister the time service registry - Type W32tm /register to register the time service registry back - Type Net start w32time - w32tm /monitor and compare the time and check wheater they are in sync or not
The client part can also be scripted and run as startup script.