You are here
Khaled Hussein - Tue, 2022/06/21 - 13:05
Hello,
I installed turnkey domain controller as production in my company and it is working fine and I moved from manual samba4 installation to trunkey, but I tried to find the NTP service because I was using my old DC as NTP server but I cannot find it on new server, how trunkey DC manage time on windows clients and how it sync the time, and if I need to install the NTP on it, is there any issue with this
Thanks
Forum:
Tags:
TurnKey uses ntpd and it should "just work
TurnKey uses ntpd to update it's own time. The service name is 'ntp' (i.e. 'systemctl status ntp').
By default it shares it's time with the network. So you should be able to use your TurnKey Domain Controller as an NTP server if you wish. I just tested it (from a Debian desktop, getting time update from a local TurnKey server I have running) and it appears to work fine OOTB!? The only thing that I can think of off the top of my head is whether you have the firewall enabled or not? (It's configured by default, but not enabled). The default firewall config doesn't allow UDP 123 (the default NTP port) but as I note, unless you've enabled that, it shouldn't matter.
Even if you don't use your TurnKey server as an NTP server, so long as all your systems are getting their time from the same source, that should be ok. You'll just need to make sure that they're all using the same source. You can find (and change) the NTP sources that TurnKey uses within the NPT config file (/etc/ntp.conf). E.g. (the defaults from near the top of the config file):
If you change them, be sure to restart ntp:
However, you can tweak the NTP set up much more if you wish. I'm no expert on it, but the docs look fairly decent.
Hello Jeremy Davis,
Hello Jeremy Davis,
Its not installed on my server, I installed it as LXC container on my Proxmox server, I installed the templates they provide
root@dc1 /etc/samba# systemctl status ntp
Unit ntp.service could not be found.
so should I install by by myself
Thanks
Sorry my bad!
Sorry my bad. You are correct. We explicitly remove it on all of our container builds because containers get their time from the host.
TBH, I'm not sure if it will work or not, but you can try:
I'm not 100% sure it will work, but shouldn't harm anything.
Add new comment