Configure NTP Time Synchronization for Threat Defense
Use a Network Time Protocol (NTP) server to synchronize the clock settings on your devices. We recommend you configure all threat defenses managed by an management center to use the same NTP server as the management center. The threat defense gets its time directly from the configured NTP server. If the threat defense's configured NTP servers are not reachable for any reason, it synchronizes its time with the management center.
The device supports NTPv4.
Note | If you are deploying threat defense on the Firepower 4100/9300 chassis, you must configure NTP on the Firepower 4100/9300 chassis so that Smart Licensing will work properly and to ensure proper timestamps on device registrations. You should use the same NTP server for the Firepower 4100/9300 chassis and the management center. |
Before you begin
-
If your organization has one or more NTP servers that your threat defense can reach, use the same NTP server or servers for your devices that you have configured for Time Synchronization on the System > Configuration page on your management center.
-
If you selected Use the authenticated NTP server only when configuring NTP server or servers for the management center, for your devices use only the NTP server or servers that are configured to authenticate with the management center. (The managed devices will use the same NTP servers as the management center, but their NTP connections will not use authentication.)
-
If your device cannot reach an NTP server or your organization does not have one, you must use the Via NTP from Defense Center option as discussed in the following procedure.
Procedure
Step 1 | Select threat defense policy. and create or edit the |
Step 2 | Select Time Synchronization. |
Step 3 | Configure one of the following clock options:
|
Step 4 | Click Save. |
What to do next
-
Make sure the policy is assigned to your devices. See Setting Target Devices for a Platform Settings Policy.
-
Deploy configuration changes; see Deploy Configuration Changes.
-
If your system includes Classic devices, set up time synchronization for those devices. See Synchronize Time on Classic Devices with an NTP Server.