LAN Manager Account Replication in Different Time Zones

ID: Q125954

The information in this article applies to:
  • Microsoft LAN Manager, versions 2.1a, 2.2, 2.2b

SUMMARY

Starting with version 2.1a, LAN Manager backup domain controllers (BDCs) and member servers can be in different time zones than their primary domain controllers (PDCs) and still maintain synchronized accounts databases.

LAN Manager BDCs and member servers prior to version 2.1a will not authenticate accounts with a PDC whose time varies by more than 10 minutes from their own time. This poses a problem for WANs when some BDCs and member servers are in different time zones.

Under LAN Manager version 2.1A and later, when a PDC sends out a LOGON_UAS_CHANGE, the message contains the PDC's time. When the BDC or member server receives this message, it calculates the difference between its time and the PDC's time. When the BDC or member server authenticates an account, it applies this difference to its own time before creating the authenticator. This enables BDCs and member servers to authenticate with their PDC, regardless of time difference.

Additional query words: prodlm 2.1A 2.20 2.2B

Keywords :
Version : :2.1a,2.2,2.2b
Platform :
Issue type :


Last Reviewed: November 11, 1999
© 2000 Microsoft Corporation. All rights reserved. Terms of Use.