The "Maximum tolerance for computer clock synchronization" policy should be set correctly. (1) number of minutes CCE-588 Maximum tolerance for computer clock synchronization (5 minutes) kerberos_maximum_tolerance_computer_clock_synchronization oval:gov.nist.fdcc.xp:def:987655 oval:org.secpod.oval:def:15348 BITS Shared Assessments SIG v6.0 Jericho Forum BITS Shared Assessments AUP v5.0 FedRAMP Security Controls(Final Release Jan 2012)--LOW IMPACT LEVEL-- ISO/IEC 27001-2005 COBIT 4.1 NIST SP800-53 R3 AU-8 PCIDSS v2.0 FedRAMP Security Controls(Final Release Jan 2012)--MODERATE IMPACT LEVEL-- CCE Version 4.2 2008-02-15 Guide to Securing Microsoft Windows XP NSA 2003-12-01 Version 1.1 R. Bickel M. Cook J. Haney M. Kerr, DISA CT01 T. Parker, USN H. Parkes Prose(pdf) FDCC: Guidance for Securing Microsoft Windows XP Systems for IT Professional (XCCDF Benchmark) NIST 2008-01-10 XCCDF FDCC: Guidance for Securing Microsoft Windows XP Systems for IT Professional (OVAL Definitions) NIST 2008-01-10 OVAL SCAP Repo OVAL Definition 2013-09-05 BITS Shared Assessments SIG v6.0 2012-10-12 Jericho Forum 2012-10-12 BITS Shared Assessments AUP v5.0 2012-10-12 ISO/IEC 27001-2005 2012-10-12 COBIT 4.1 2012-10-12 NIST SP800-53 R3 2012-10-12 PCIDSS v2.0 2012-10-12