Hi, we have an Active Directory infrastructure based on WS 2016.
Also we have a VPN server based on the Check Point router.
When a client computer located in a domain local network - everything is fine: domain joined computers get time from the DCs. But when a user works from home his computer can't reach the DC and loses the time sync. The connection to the DC restores only after the user logs in and starts the VPN. The problem is - the user is unable to log in due to time synchronization issues getting an error on the logon screen: Bad request timestamp.
Question: is it possible to configure NTP on the client so that it uses external NTP while being outside the domain LAN, and uses DC NTP while being in the domain LAN?
Thank you!


