All posts by Don Matteo

Enable Synology Root Login

Synology from DSM Version 6 offers the possibility like for Linux experts to use the SSH terminal. NAS are mostly behind firewalls and cannot be reached from Internet side via SSH, login as a user with subsequent “sudo su root” is considered as an additional effort. However, there is the option of logging in as root, as shown below.

First, the DSM Control Panel is called up, Extended mode must be activated so that the required icon Terminal & SNMP appears.

Synolog DSM Control panel
Control panel

Under Terminal & SNMP the SSH-Service just can enable.

SSH-Service enable
SSH-Service enabled

Now establish an SSH connection to the Synology Diskstation using PuTTY or KiTTY and log in as admin, then change the root password.

Instead of admin_password, enter the same admin password that is used when logging in to Synology DSM.

sudo_synouser

Configure the SSH service to enable root login.

sshd_config

Activate the option PermitRootLogin yes marked as a comment line by removing the # beforehand.

Now restart the DiskStation, or deactivate and reactivate the SSH service in the Control Panel, the change will take effect, now root@diskstation can log in directly to the Synology NAS.

If you want to log in as root with WinSCP, the transmission protocol SCP (not SFTP) must be selected.

WinSCP Session Settings

Windows Server 2012 NTP Configuration

Windows Server NTP Network Time

Correct time synchronization in an AD domain environment is a prerequisite for stable operation. This article describes how NTP (w32tm) is configured on a Windows Server 2012 (FSMO). As a rule, the PDC operations master is the NTP service server in a forest. A PDC emulator in a domain is synchronized with an external time source. In order for a domain controller to be regarded as a reliable time source, this must be specified explicitly.

In order to make the PDC emulator a reliable time source that regularly synchronizes with time servers on the Internet, the following commands from PowerShell are executed as administrator:

Show which time server is currently in use.

Execute the time synchronization immediately.

The clients and servers in domain forest as well as shared storages can now synchronize the time with the PDC emulator.

The firewall permit UDP port 123 inbound, e.g. allow outgoing.

The NTP configuration can also be done via GPO by calling gpmc.msc.

Group Policy Management
Computerkonfiguration/Administrative Templates/System/Windows-Timeservice/Timeserver

Group Policy Management Console
Group Policy Management Console

Following Test Displays a graph of the offset between synchronizing computers.

W32tm stripchart
W32tm stripchart

The configuration can also be checked in the registry.

w32tm_registry
HKLM\SYSTEM\CurrentControlSet\Services\W32Time\Parameters