Skip to content
This repository has been archived by the owner on Jan 17, 2024. It is now read-only.

Time Sync

Jump to bottom
Harun Davood edited this page Jun 15, 2017 · 9 revisions

NIST Controls

AU-8.a, AU-8.b, AU-8 (1).a, AU-8 (1).b

Implementation and Configuration

Time sync is done by leveraging Azure's Custom Script Extension for Windows. The time sync script is run on every machine within the domain.

The time zone utility tzutil.exe is used to set the time zone for all the machines to UTC. This will also ensure that the time synchronization is maintained.

You can view the script here.

Once the running of the custom script extension is complete, to verify do the below

1)Log into each virtual machine where the extension is installed.

2)Once logged in, from the bottom right of the virtual machine screen- check if time zone is "UTC"

Compliance Documentation

AU-8.a: The information system uses internal system clocks to generate time stamps for audit records.

Resources deployed by this Azure Blueprint Solution use internal system clocks to generate time stamps for audit records.

AU-8.b: The information system records time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT) and meets organization-defined granularity of time measurement (one second).

Resources deployed by this Azure Blueprint Solution use internal system clocks to generate time stamps for audit records. Time stamps are recorded in UTC.

AU-8 (1).a: The information system compares the internal information system clocks at least hourly with http://tf.nist.gov/tf-cgi/servers.cgi.

Resources deployed by this Azure Blueprint Solution use internal system clocks to generate time stamps for audit records. Internal system clocks are configured to sync with an authoritative time source each hour.

AU-8 (1).b: The information system synchronizes the internal system clocks to the authoritative time source when the time difference is greater than an organization-defined time period

Resources deployed by this Azure Blueprint Solution use internal system clocks to generate time stamps for audit records. Internal system clocks are configured to sync with an authoritative time source each hour.

NIST Control Requirements | Issues

Home

ARM Templating

NIST 800-53 rev4 Controls

Account Management Principals

Alternate Processing Site

Anti Malware

Application Configuration (e.g SQL server)

Audit Protection Against Altering Records and Purging

Auditing System Failure

Backup

Boundary Protection

Communication Protection

Establish User Account Types

ExpressRoute (premium v2 feature)

Information at Rest

Information Flow Enforcement

Key Vault Key Management

OMS Auditing for FedRamp Requirements

Operating System Baseline

Partitioning

Password Restrictions

Patching

Redundant Storage - Geo Replicated

Role Based Access Control

SQL Transaction Recovery

Time Sync

Unique Identifiers

Clone this wiki locally