Microsoft KB Archive/125954

= LAN Manager Account Replication in Different Time Zones =

Article ID: 125954

Article Last Modified on 9/30/2003

-

APPLIES TO


 * Microsoft LAN Manager 2.1a
 * Microsoft LAN Manager 2.2 Standard Edition
 * Microsoft LAN Manager 2.2b

-



This article was previously published under Q125954



SUMMARY
Starting with version 2.1a, LAN Manager backup domain controllers (BDCs) and member servers can be in different time zones than their primary domain controllers (PDCs) and still maintain synchronized accounts databases.

LAN Manager BDCs and member servers prior to version 2.1a will not authenticate accounts with a PDC whose time varies by more than 10 minutes from their own time. This poses a problem for WANs when some BDCs and member servers are in different time zones.

Under LAN Manager version 2.1A and later, when a PDC sends out a LOGON_UAS_CHANGE, the message contains the PDC's time. When the BDC or member server receives this message, it calculates the difference between its time and the PDC's time. When the BDC or member server authenticates an account, it applies this difference to its own time before creating the authenticator. This enables BDCs and member servers to authenticate with their PDC, regardless of time difference.

Additional query words: prodlm 2.1A 2.20 2.2B

Keywords: KB125954

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.