How do you synchronize AD and time?

Hello.
I have a question about Academy’s ACTIVE DIRECTORY ENUMERATION & ATTACKS/Kerberoasting - from Linux.
I have connected to the Attacker machine via SSH and executed the following command.
impacket-GetUserSPNs -dc-ip 172.16.5.5 INLANEFREIGHT.LOCAL/<account> -request-user SAPService
However, the following error occurred.
[-] Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)
I am doing time synchronization with Active Directory to deal with this error.
However, I could not find the ntpdata , rdata commands to synchronize time with AD.

スクリーンショット 2024-07-20 16.25.00754×119 34.3 KB

How can I synchronize the time between the attacker machine and AD?

sudo rdate -n [IP ADDRESS] or sudo ntpdate [IP ADDRESS]

If you can’t find, install it with apt.

Thanks！

Some of these boxes really do tend to get errors upon spawning. I won’t remember this case specifically.

But if it’s from your host to a victim, you should be able to download the binary and just sync your clock to the DC’s.

I’ve used the Pwnbox on almost the whole entire HTB and also did not have a problem with it, which I had to do it in one of the last Season’s box.

Haven’t tried pivoting and having to do it in a jump host though.

Also had a synced clock problem right a couple of hours ago while doing Forest and running bloodhound-python.

I’m a John the Ripper kind of guy!
Always felt Hashcat took too long.

But I guess you’re right… Many of these Academy boxes are spawning falty and I do this in the Academy Modules as well (Not in the Labs due to some of the attack paths being long)