THE OFFICIAL BLOG OF THE SBS "DIVA"

Somewhere I saw (and I can't remember where) that time.nist.gov has been deprecated and we shouldn't use it anymore to sync our domain controllers to.... and the time server we should be is point to Pool.ntp.org instead.  Make sure that the CEICW has poked open the port 123 UDP holes in the firewall (it does in ISA 2004 for example).

Net time is what we used to use, and now we use w32tm instead as net time is "deprecated" as they call it.

The commands to use at the server are basically as follows:

If you are time syncing with a Non Windows server you may have to do a 0x8 command shown below:

(edit) Keep in mind that this external time sync source is if you want to point your DC to an external time source, I've personally found that even without these commands, that the internal XP clients will pick up the time clock of the server without any w32tm commands, however if you are finding that the time syncing is not occuring, or you want to ensure that it's syncing and you want to point to an external clock, this is the commands to do so)

This problem may occur when your computer sends synchronization requests by
using symmetric active mode. By default, Windows Server 2003 domain
controllers are configured as time servers and use symmetric active mode to
send synchronization requests. Some NTP servers that do not run Windows
respond only to requests that use client mode.

To resolve this problem, configure Windows Time to use client mode when it
synchronizes with the time server. To do this, follow these steps:

1. Click Start, click Run, type cmd , and then press ENTER.  

2. At the command prompt, type the following commands in the order that
they are given. After you type each command, press ENTER.

w32tm /config /manualpeerlist: NTP_server_IP_Address ,0x8/syncfromflags:MANUAL  
net stop w32time  
net start w32time  
w32tm /resync  


For more info:
Time synchronization may not succeed when you try to synchronize with a
non-Windows NTP server in Windows Server 2003
http://support.microsoft.com/?id=875424  

The full info on the w32 commands are here: 

w32tm [/? | /register | /unregister ]
  ? - this help screen.
  register - register to run as a service and add default
    configuration to the registry.
  unregister - unregister service and remove all configuration
    information from the registry.

w32tm /monitor [/domain:<domain name>]
               [/computers:<name>[,<name>[,<name>...]]]
               [/threads:<num>]
  domain - specifies which domain to monitor. If no domain name
    is given, or neither the domain nor computers option is
    specified, the default domain is used. This option may be
    used more than once.
  computers - monitors the given list of computers. Computer
    names are separated by commas, with no spaces. If a name is
    prefixed with a '*', it is treated as a PDC. This option
    may be used more than once.
  threads - how many computers to analyze simultaneously. The
    default value is 3. Allowed range is 1-50.

w32tm /ntte <NT time epoch>
  Convert a NT system time, in (10^-7)s intervals from 0h 1-Jan 1601,
  into a readable format.

w32tm /ntpte <NTP time epoch>
  Convert an NTP time, in (2^-32)s intervals from 0h 1-Jan 1900, into
  a readable format.

w32tm /resync [/computer:<computer>] [/nowait] [/rediscover] [/soft]
  Tell a computer that it should resynchronize its clock as soon
  as possible, throwing out all accumulated error statistics.
  computer:<computer> - computer that should resync. If not
    specified, the local computer will resync.
  nowait - do not wait for the resync to occur;
    return immediately. Otherwise, wait for the resync to
    complete before returning.
  rediscover - redetect the network configuration and rediscover
    network sources, then resynchronize.
  soft - resync utilizing existing error statistics. Not useful,
    provided for compatibility.

w32tm /stripchart /computer:<target> [/period:<refresh>]
    [/dataonly] [/samples:<count>]
  Display a strip chart of the offset between this computer and
  another computer.
  computer:<target> - the computer to measure the offset against.
  period:<refresh> - the time between samples, in seconds. The
    default is 2s
  dataonly - display only the data, no graphics.
  samples:<count> - collect <count> samples, then stop. If not
    specified, samples will be collected until Ctrl-C is pressed.

w32tm /config [/computer:<target>] [/update]
    [/manualpeerlist:<peers>] [/syncfromflags:<source>]
    [/LocalClockDispersion:<seconds>]
    [/reliable:(YES|NO)]
    [/largephaseoffset:<milliseconds>]
  computer:<target> - adjusts the configuration of <target>. If not
    specified, the default is the local computer.
  update - notifies the time service that the configuration has
    changed, causing the changes to take effect.
  manualpeerlist:<peers> - sets the manual peer list to <peers>,
    which is a space-delimited list of DNS and/or IP addresses.
    When specifying multiple peers, this switch must be enclosed in
    quotes.
  syncfromflags:<source> - sets what sources the NTP client should
    sync from. <source> should be a comma separated list of
    these keywords (not case sensitive):
      MANUAL - include peers from the manual peer list
      DOMHIER - sync from a DC in the domain hierarchy
  LocalClockDispersion:<seconds> - configures the accuracy of the
    internal clock that w32time will assume when it can't acquire
    time from its configured sources.
  reliable:(YES|NO) - set whether this machine is a reliable time source.
    This setting is only meaningful on domain controllers.
      YES - this machine is a reliable time service
      NO - this machine is not a reliable time service
  largephaseoffset:<milliseconds> - sets the time difference between
    local and network time which w32time will consider a spike.

w32tm /tz
  Display the current time zone settings.

w32tm /dumpreg [/subkey:<key>] [/computer:<target>]
  Display the values associated with a given registry key.
  The default key is HKLM\System\CurrentControlSet\Services\W32Time
    (the root key for the time service).
  subkey:<key> - displays the values associated with subkey <key> of the default
 key.
  computer:<target> - queries registry settings for computer <target>

And keep this in mind if you are still having issues... 

Error message when you run the "w32tm /resync" command to synchronize Windows Server 2003 or Windows SBS to an external time source: "The computer did not resync because no time data was available":
http://support.microsoft.com/kb/929276/en-us