The "Maximum tolerance for computer clock synchronization" policy should be set correctly.
(1) number of minutes
CCE-588
kerberos_maximum_tolerance_computer_clock_synchronization
oval:gov.nist.fdcc.vista:def:987655
oval:org.secpod.oval:def:14486
BITS Shared Assessments SIG v6.0
Jericho Forum
BITS Shared Assessments AUP v5.0
FedRAMP Security Controls(Final Release Jan 2012)--LOW IMPACT LEVEL--
ISO/IEC 27001-2005
COBIT 4.1
NIST SP800-53 R3 AU-8
PCIDSS v2.0
FedRAMP Security Controls(Final Release Jan 2012)--MODERATE IMPACT LEVEL--
CCE Version 4.2
2008-02-15
FDCC: Guidance for Securing Microsoft Windows Vista Systems for IT Professional (XCCDF Benchmark)
2008-01-10
FDCC: Guidance for Securing Microsoft Windows Vista Systems for IT Professional (OVAL Definitions)
2008-01-10
SCAP Repo OVAL Definition
2013-08-13
BITS Shared Assessments SIG v6.0
2012-10-12
Jericho Forum
2012-10-12
BITS Shared Assessments AUP v5.0
2012-10-12
ISO/IEC 27001-2005
2012-10-12
COBIT 4.1
2012-10-12
NIST SP800-53 R3
2012-10-12
PCIDSS v2.0
2012-10-12