Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
711
Views
0
Helpful
7
Replies

NTP or time sync between Director and Sensors

sboutchyard
Level 1
Level 1

‎01-04-2002 05:56 AM - edited ‎03-08-2019 09:30 PM

Has anyone successfully implemented NTP on the sensors getting their time from the Unix Director?

Labels:
0 Helpful
7 Replies 7

clindsey
Level 1
Level 1

‎01-04-2002 08:41 AM

Several releases back I had looked into this, and what I concluded was that you could *manually* have the sensor hit an NTP server to get the time (the same place you would enter the time manually in the setup process), however the setting did not appear to continually hit the NTP server to maintain the time. You would have to go in periodically and force that.

There may be a way at the OS level to accomplish this, however, and I have not looked into that aspect. I would like to hear others' experiences with the same.

0 Helpful

wardwalk
Cisco Employee
Cisco Employee

‎01-04-2002 08:44 AM

Not sure if this helps, but you can synchronize sensor time with another machine, e.g. the director.

Run sysconfig-sensor, selection option 7 (Date/Time and TimeZone). Then select option 1 (Synchronize Date/Time with Another Host). Then, enter the IP address of your director.

0 Helpful

sboutchyard
Level 1
Level 1
In response to wardwalk

‎01-04-2002 09:36 AM

Yes, I have used this in the past. I would like to use NTP at the OS level to continuouly poll the time server. Has anyone made this work?

0 Helpful

wardwalk
Cisco Employee
Cisco Employee
In response to sboutchyard

‎01-04-2002 09:57 AM

This feature has been requested by several users. As a result, the Solaris NTP package is installed on the latest version appliance sensors. Some users have indeed implemented NTP on their sensors as you described. So it is possible.

However, we don't yet support configuring or using it and the TAC won't field calls for it's support. So, it's a use at your own risk feature.

Support for configuring NTP is being considered for a future version.

If using the IDSM in the Cat6000, then NTP can be configured directly on the Cat6000 and the time changes will be propagated to the IDSM.

0 Helpful

brok3n
Level 1
Level 1
In response to wardwalk

‎01-17-2002 02:07 PM

I would be careful adding additional listeners to the sensors. SSH is enough for me, the fewer attack vectors the better.

ntpdate and crontab seems to work ok for me.

-brkn!

0 Helpful

waynepua
Level 1
Level 1

‎01-11-2002 12:03 AM

I have tried run ntp daemon on solaris director machine pointing to a ntp server. Then on the sensor, sychronise the time with director and it works.

0 Helpful

sboutchyard
Level 1
Level 1
In response to waynepua

‎01-11-2002 05:01 AM

Do you have any documentation or SOP you could share. I am getting mixed results with some of the sensors not getting updated. Thanks

0 Helpful
Customers Also Viewed These Support Documents