NTPd will "slew" your clock back into sync gradually. There is a single Solaris kernel instance shared by all zones. This could be the case here because this is about a virtual machine. Next to "Configuration" I select "Keep synchronized with Internet servers".

There is a single Solaris kernel instance shared by all zones.

By default the privilege to change the date and time is not available inside a non-global zone and therefore the NTP service will fail to adjust the time. The configuration in the global zone and a non-global zone is exactly same, except for the fact that non-global zones are not allowed to change the time bye default.

In my experience on a virtualized system on a Xen host (such as our setup at Rackspace Cloud) the inaccuracy inherited by not having a dedicated system clock to process the

hz = 100 Sep 7 18:45:48 zone xntpd[19822]: [ID 953130 daemon.error] loop_config: ntp_adjtime() failed: Not owner Sep 7 18:45:48 zone xntpd[19822]: [ID 266339 daemon.notice] using kernel phase-lock loop 0041, drift correction

It's obviously not syncing with anybody's servers. If it's been running for many months, as you say, then that isn't it.

Some days ago I recognized that the time on a server I administrate is two hours slow. Shouldn't this be one of the things that SUN disallowes to be configured on a regular zone? How can I diagnose what's happening, is there a log I can turn on?

Try blocks such as the following: # ntp.xs4all.nl server restrict You need multiple peers or servers for ntpd, since it tries to use majority-rules voting to deal with a

This will prevent ntpd from synchronizing time with these hosts.

copy /etc/named.conf from another slave name server, or create it copy /var/named/named.ca from another name server, or create it copy /var/named/localhost.zone from another name server, or create it copy /var/named/localhost.rev from another name server, or create it

You can add this line to the file /etc/ntpd.conf to see what happen : logfile /var/log/ntpd Should you want to grant this possibility to a non global zone, just add the sys_time privilege to the zone: Code: # zonecfg -z ntpzone zonecfg:ntpzone> set limitpriv="default,sys_time" Just make sure

