ThousandEyes Documentation
ThousandEyes Documentation
ThousandEyes Documentation
What's New
Changelog
Product Documentation
Getting Started
Global Vantage Points
Cloud Agents
Enterprise Agents
Installing
Configuring
Managing
Proxy Environments
Troubleshooting
Troubleshooting Automatic-Update Problems on Enterprise Agents
Troubleshooting Time Synchronization on Enterprise Agents
Installing CA Certificates on Enterprise Agents
Agent Unable to Trace Path to Destination?
BrowserBot Installation Fails on Red Hat or CentOS in Amazon EC2
What to Do If te-agent Stops Running Due to a VACUUM Error
Enterprise Agents: What Information Do We Collect?
What Is BrowserBot?
Enterprise Agent Utilization
Network Utilization from Enterprise Agent Test Traffic
Enterprise Agent Interface Selection
ThousandEyes Product Lifecycle Policy
Endpoint Agents
Tests
Internet Insights
Alerts
Reports
ThousandEyes Basics
Outage Detection
Device Layer
Account Management
Integration Guides
Advanced Troubleshooting
API
Privacy-Related
Archived Documentation
Release Notes
2020
2019
2018
2017
2016
2015
2014
2013
2012

Troubleshooting Time Synchronization on Enterprise Agents

Problem

When viewing your Enterprise Agent's status on the Agents > Enterprise Agents page, you see a time synchronization warning, such as:

Agent System Time: HH:MM UTC (XX minutes behind)

or

Unable to determine agent system clock offset

In order for ThousandEyes Agents to report data to the ThousandEyes data collector, the data must have correct timestamps. If data timestamps are significantly out of sync with the ThousandEyes collector, the data will not be uploaded to the collector and the above error results.

Solution

In order for a ThousandEyes Enterprise Agent to keep proper time, the Network Time Protocol (NTP) must be configured on the Enterprise Agent. NTP is the standard way to perform clock synchronization among networked devices. NTP communication occurs between the device configured for NTP and an NTP server providing the clock synchronization. The process for configuring NTP for an Enterprise Agent has three parts:

  1. Select NTP servers

  2. Configure any needed firewall rules

  3. Configure NTP on the Enterprise Agent

Select NTP Servers

First, select primary and secondary NTP servers to use. Public NTP servers are available. The most commonly used public servers are the NTP Pool Project servers, which ThousandEyes agents are often configured to use. If you have a limited number of Enterprise Agents, select two of the following servers:

0.pool.ntp.org 1.pool.ntp.org 2.pool.ntp.org 3.pool.ntp.org

These domain names will be used in Step 2 below, as the servers that each Enterprise Agent will contact to obtain time synchronization information.

Alternatively, you may choose NTP servers which are closer geographically to your location, which can help improve NTP performance. This link explains how to search for NTP servers. You may search by geographic region, such as "California" or "Canada".

In addition, your Internet service provider (ISP) or hosting provider will often provide NTP servers to its customers. If your Enterprise Agents are located within your corporate/internal network, then contact the technical support for your ISP to obtain NTP server information. If your Enterprise Agent is located at a hosting/colocation facility, contact the technical support for your hosting provider to obtain NTP server information. If available, it is recommended that you use these NTP servers to avoid adding to the load on the public NTP servers.

For sites with a few dozen or more Enterprise Agents, it is recommended that the organization run its own NTP server locally. Consult the documentation for your organization's server operating systems to select a server for the NTP software. This link describes the process of installing and configuring NTP on Ubuntu Linux.

NOTE: Most Microsoft Windows Active Directory servers are configured by default to provide NTP. If both the AD servers and the Enterprise Agents are located on your internal network, then use the IP addresses of two of your AD servers as NTP servers for step #3. You may be able to skip step #2, firewall configuration. Consult your network administrator.

Configure Firewall Rules

Second, ensure the correct firewall configuration to allow NTP from the Enterprise Agent to the NTP servers. Review Firewall Configuration for Enterprise Agents for port and protocol details. The destination IP addresses or domain names for any firewall rules will be the NTP servers.

Additionally, if you have created NTP servers on your own network, ensure that your NTP servers can communicate through any firewalls with the NTP servers that provide time synchronization to your servers.

Configure NTP

Third, enable the Network Time Protocol (NTP) on the Enterprise Agent. Follow the instructions below for the type of Enterprise Agent requiring NTP: the Virtual Appliance or the Linux package.

Virtual Appliance

Connect your browser to the web administration interface of the Virtual Appliance ( http://<agent-IP> ), and select the Time tab. Enter the domain names or IP addresses of your primary and secondary NTP servers, then click Save.

Linux Package

To enable NTP for a ThousandEyes Linux package, consult the documentation for your Linux distribution. An example for Ubuntu is available here. In other Linux distributions the steps will be similar. The steps have been summarized below:

  1. Install the NTP package

    sudo apt-get install ntp

  2. Open the NTP configuration file with a text editor (nano, in this example). Use sudo if required by your security configuration.

    sudo nano /etc/ntp.conf

    Add the NTP primary and secondary server domain names or IP addresses near the top

      server 0.pool.ntp.org
      server 1.pool.ntp.org

  3. Start NTP

    sudo /etc/init.d/ntp restart
Previous
Troubleshooting Automatic-Update Problems on Enterprise Agents
Next
Installing CA Certificates on Enterprise Agents
Last updated 1 month ago
Contents
Problem
Solution
Select NTP Servers
Configure Firewall Rules
Configure NTP