|Error code: 1398|
|Description: There is a time difference between the client and server. ERROR_TIME_SKEW|
The error appears if the time between the client and the server is not synchronized. Synchronize the time with the Domain Controller for this error to disappear. Logon errors appear if there is a time difference between the client and the Domain Controller.
As per M232386, if the client computer's time or date is not synchronized with the authenticating domain controller, Kerberos validation does not succeed. This occurs because of the variation in the time stamps between the AS_Req and AS_reply between the client and server. Because Kerberos is the only form of logon authentication between two Windows 2000-based computers, the logon does not succeed.
M297234 states that this behavior may occur if you install the Surf Control Enterprise User Monitor on the Domain Controller.
"Windows Time Service and Internet Communication", "How Windows Time Service Works", "Windows Time Service Tools and Settings", and "Keeping Time on your Windows NT Network" provide information on the time service and tips on how to have a synchronized time across your network.
|Links: M232386, M297234, Windows Time Service and Internet Communication, How Windows Time Service Works, Windows Time Service Tools and Settings, Keeping Time on your Windows NT Network|
Keywords: error code 1398 and Network: Google - Bing - Microsoft - Yahoo
Keywords: There is a time difference between the client and server. ERROR_TIME_SKEW: Google - Bing - Microsoft - Yahoo
|Feedback: If you have additional details about this error code, please send it to us.|