| Event Id | 12 |
| Source | W32time |
| Description | "DESCRIPTION 1: The NTP server %1 isnt syncd, time not set. DESCRIPTION 2: Time Provider NtpClient: This machine is configured to use the domain hierarchy to determine its time source, but it is the PDC emulator for the domain at the root of the forest, so there is no machine above it in the domain hierarchy to use as a time source. It is recommended that you either configure a reliable time service in the root domain, or manually configure the PDC to synchronize with an external time source. Otherwise, this machine will function as the authoritative time source in the domain hierarchy. If an external time source is not configured or used for this computer, you may choose to disable the NtpClient." |
| Event Information | According to Microsoft: CAUSE: This issue occurs because the Windows Time service runs under the local system account on the internal server, and the Access Control feature is enabled on the proxy server. RESOLUTION: To work around this issue, use any of the following methods: • Disable the Access Control feature for the Winsock proxy. The Enable Access Control check box is located on the Permissions tab in the properties of the Winsock Proxy service in Microsoft Internet Information Services (IIS) Manager. To disable the Access Control feature, click to clear the check box. • Set the computer to access the proxy server for its NTP server, and configure the proxy to point to the external Time service. • Use a batch file with the following commands on the internal computer: net stop w32time w32tm -once net start w32time Use the Scheduler tool to run the batch file daily. |
| Reference Links | How to configure an authoritative time server in Windows 2000 How to configure an authoritative time server in Windows XP How to manually sync time between domain client and local time server How to configure an authoritative time server in Windows Server 2003 The Windows 2000 and Windows Server 2003 Time service does not work through a proxy with Access Control enabled |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.