On Tue, Apr 07, 2015 at 08:18:47AM -0400, Simo Sorce wrote:
On Tue, 2015-04-07 at 10:01 +0200, Miroslav Lichvar wrote:
> On Mon, Apr 06, 2015 at 08:08:43PM -0400, Simo Sorce wrote:
> > Given the domain controller role uses ntpd, shouldn't we rather install
> > that one ?
> Is that for the MS-SNTP authentication?
No, we do not make use of that yet (we probably should).
We used ntpd because it was the only one able to serve as a time server,
has cronyd gained the ability to be a server itself ?
chronyd can work as an NTP server, but unlike ntpd it's disabled by
default. The allow directive can be used in chrony.conf or at runtime
with "chronyc -a allow" to allow NTP client access.
> Would there be any interest in adding support for MS-SNTP to
It would probably be a good thing, I know samba has hooks for that on
the server side at least.
Yes, that's what I meant, support for the samba ntp signd socket. With
chronyd I think the default would be disabled and it would need to be
enabled in chrony.conf when needed.
Maybe chronyd should include files from an /etc/chrony.d directory
where other packages could put their files to enable NTP access, etc?