Cisco Cisco Firepower Management Center 2000 Guía Para Resolver Problemas

Check if the FireSIGHT Management Center (also known as Defense Center or DC) has the clock
set to Via NTP from, and an address of an NTP server is provided.  Also confirm that the
Managed Device is set to via NTP from Defense Center.

If you specify a remote external NTP server, your appliance must have network access to it. Do
not specify an untrusted NTP server. Do not synchronize your managed devices (virtual or
physical) to a Virtual FireSIGHT Management Center. Cisco recommends that you synchronize
your virtual appliances to a physical NTP server. 

After you apply the configuration for time synchronization, make sure that the time on your
Management Center and managed devices matches. Otherwise, unintended consequences
might occur when the managed devices communicate with the Management Center.

1. In order to gather information about the connection to a time server, run the following command
on your FireSIGHT Management Center:

admin@FireSIGHT:~$ ntpq -pn

remote refid st t when poll reach delay offset jitter

==============================================================================

*198.51.100.2 203.0.113.3 2 u 417 1024 377 76.814 3.458 1.992

An asterisk '*' under the 

remote

 indicates the server you are currently synchronized to. If an entry

with an asterisk is unavailable, the clock is currently not synchronised with it's timesource.

On a managed device, you can run the following command on shell to determine the address of
your NTP server:

> show ntp