Configuring time synchronization on all instances of the VMware Identity Manager service and connector is required for a VMware Identity Manager deployment to function correctly. To configure time synchronization for the VMware Identity Manager connector (Windows), you use the Appliance Settings > Manage Configuration > Time Synchronization tab in the VMware Identity Manager console.

You can synchronize the VMware Identity Manager connector clock either with the ESXi host or with a Network Time Protocol (NTP) server. By default, the VMware Identity Manager connector is set to synchronize with the host. If your connector Windows machine is not running on an ESXi host, the Host Time synchronization option is not applicable and you must either select the NTP option or configure time synchronization on the Windows machine directly.

Follow these guidelines:
  • As a best practice, synchronize time with an NTP server if the VMware Identity Manager connector instance can access an NTP server. Otherwise, synchronize time with the ESXi host and configure the ESXi host to synchronize time with an NTP server.
    Note: If your connector Windows machine is not running on an ESXi host, either select the NTP option or configure time synchronization on the Windows machine directly.
  • If your deployment includes VMware Identity Manager service or connector instances on different hosts, the best practice is to synchronize time with an NTP server directly instead of synchronizing with the host to ensure that there is no time drift between the instances.

Prerequisites

If your connector Windows machine is running on an ESXi host and you want to use the Host Time synchronization option, install VMware Tools on the Windows machine.

Procedure

  1. Log in to the connector admin pages at https://connectorFQDN:8443/cfg/login as the admin user.
  2. Click Time Synchronization in the left pane.
  3. Select a time synchronization option.
    Option Description
    NTP Synchronizes the VMware Identity Manager connector system clock with an NTP server. The default NTP server is time.nist.gov. To use another NTP server, enter its fully qualified domain name (FQDN) in the NTP Server text box. For example:

    ntpserver.example.com

    Host Time Synchronizes the VMware Identity Manager connector system clock with the ESXi host, if applicable. This is the default setting.
  4. Click Save.