On Mon, 2012-08-06 at 11:35 -0400, Nico Kadel-Garcia wrote: > On Sun, Aug 5, 2012 at 11:45 PM, deepak prasad <[email protected]> wrote: > > Yes I believe so because I think there should be only 5 min of changes > > between the server time and client machine and if the time gap is more my > > clients do not get internet connection, it seems my named server doesnot > > work for them and when I fix the date once again the nameserver starts > > working so I thought building a NTP server would be a good idea > > NTP is great. I agree with your implicit assumption that using a good > NTP service is helpful for Samba: The Kerberos authentication > necessary Active Directory style authentication is a vital component > of modern Samba. and it most definitely relies on a good time service > to keep remote hosts in sync. But it's the requirement for a *signed* > NTP service that I'm doubting. But your remote site, and yours should > be able to use publicly available NTP services. unless you really have > some compelling need to keep your NTP service completely private.
The advantage of having signed NTP working is that it then just works - client machines in AD trust the AD server to provide the time, and need no further configuration. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
