Discover the critical role of Network Time Protocol (NTP) in securing your RSA Authentication Manager system.
Ensuring that your RSA Authentication Manager is synchronized with a reliable Network Time Protocol (NTP) server is vital for maintaining accurate system time, which is critical for security and logging purposes. Below is a step-by-step guide to access and verify the NTP status on your RSA Authentication Manager.
If you wish to check the NTP status on RSA AM you can run a useful Linux utility as follows:
Log into the appliance using SSH
ntpq -p
However, this utility runs based on the configuration found in /etc/ntp.conf.
Now due to IPV6 support being partially on in RSA AM, and for other reasons in order to make it work properly add the following lines to the ntp.conf
restrict -6 ::1
restrict ::1
Then you simply restart ntp as follows:
service ntp restart
...and your query to the configured ntp server will return information regarding the server and offsets. The output will look something like this:
remote refid st t when poll reach delay offset jitter
===================================================================
w.x.y.z .LOCL. 1 u 57 64 377 0.313 245903. 7.716
a.b.c.d 192.168.10.25 2 u 56 64 377 0.536 245894. 6.630
Note
If you have set RSA AM to sync time with the VMWare host then this utility will not properly query the VMWare host unless you add its IP address of the VMHost into the /etc/ntp.conf as a time server.