Product Documentation

Configuring Clock Synchronization

May 15, 2015

You can configure your NetScaler Insight Center virtual appliance to synchronize its local clock with the Network Time Protocol (NTP) server used by your servers and NetScaler appliance. NetScaler Insight Center then has the same date and time settings as the other servers and appliances in your network. The clock synchronization configuration does not change if NetScaler Insight Center is restarted, upgraded, or downgraded.

The clock is synchronized immediately if you add a new NTP server or change any of the authentication parameters. You can also explicitly enable and disable NTP synchronization.

Note: If you do not have a local NTP server, you can find a list of public and open access NTP servers at the official NTP site, http://www.ntp.org. Before configuring a NetScaler appliance or other network entity to use a public NTP server, be sure to read the Rules of Engagement page (link included on all Public Time Servers pages).

Configuring an NTP Server

To synchronize the local time of the NetScaler Insight Center appliance, you have to first configure an NTP server.

To add an NTP server

  1. On the Configuration tab, expand System > NTP Servers.
  2. In the details pane, do one of the following:
    • To add a new NTP server, click Add.
    • To modify settings for an existing NTP server, select the NTP server, and then click Modify.
  3. In the Add NTP Server dialog box, set the following parameters:
    • Server Name/IP Address—Domain name of the NTP server or the IP address of the NTP server. The name or IP address cannot be changed for an existing NTP server.
    • Minimum Poll Interval—Minimum number of seconds after which the NTP server must poll the NTP messages, expressed as a power of 2. Minimum value: 4 (2^4=16 seconds). Maximum value: 6 (2^6=64 seconds). Default: 6 (2^6=64 seconds).
    • Maximum Poll Interval—Maximum number of seconds after which the NTP server must poll the NTP messages, expressed as a power of 2. Minimum value: 10 (2^10=1024 seconds). Maximum value: 17 (2^17=36 hours). Default : 10 (2^10=1024 seconds).
    • Key Identifier—Key to be used for the specified server. This key identifier should be added to the list of Trusted Key IDs in the authentication parameters. Minimum value: 1. Maximum value: 65534.
      Note: Do not add a key if you select Autokey.
    • Autokey—Use the Autokey protocol for the specified server.
    • Preferred—Synchronize with this server first. Applicable if more than one server is configured.
  4. Click Add, and then click Close.
  5. In the details pane, verify that the settings displayed for the NTP server that you just configured are correct.

Enabling an NTP Synchronization

After configuring the NTP server, you must enable the NTP synchronization for the lnsight appliance to synchronize its local time with the NTP server.

To enable an NTP synchronization

On the Configuration tab, navigate to System> NTP Servers, Then, in the users pane, from the Action drop-down list, select NTP Synchronization and enable NTP synchronization.

Modifying the Authentication Options

You can modify the options for authenticating an NTP server.

To modify the authentication options

On the Configuration tab, navigate to System > NTP Servers, and in users pane, from the Action drop-down list, select Authentication Parameters and modify the authentication options.

  1. In the navigation pane, expand System, and then click NTP Servers.
  2. In the details pane, from the Action drop-down list, select Authentication Parameters.
  3. In the Modify Authentication Options dialog box, set the following parameters:
    • Authentication—Enable NTP authentication. Possible values: YES, NO. Default: YES.
    • Trusted Key IDs—Identifiers of trusted keys. While adding an NTP server, you select a key identifier from this list. Minimum value: 1. Maximum value: 65534.
    • Revoke Interval—Interval between re-randomization of certain cryptographic values used by the Autokey scheme, as a power of 2, in seconds. Default value: 17 (2^17=36 hours).
    • Automax Interval—Interval between regeneration of the session key list used with the Autokey protocol, as a power of 2, in seconds. Default value: 12 (2^12=1.1 hours).
  4. Click OK.