I know how to set an authoritative time server in Server 2008 R2. That's not what this question is. I want to know how I can change the time on a network where the PDC (and therefore everything) is a month out of date?
I know that a 5 minute difference in time between clients and the domain prevents logons, so just changing the time on the PDC will break everything.
What is the best way to fix this?
As a high level overview my approach would be to try and do the following:
Ensure that NTP is functioning correctly on your domain and make sure you know which server(s) control the time.
Ensure that all of your clients and servers are actually using NTP
On your clients, reduce the MaxPollInterval and increase MaxPosPhaseCorrection. (This may help: http://technet.microsoft.com/en-us/library/cc773263(WS.10).aspx)
Make the change, allow everything to synchronise
Reverse the client changes
Now, because you did all of the above in a lab, try it in real life ;)