Audit Agent Compliance evidence & audit prep Operations Agent M365 operations & CIS benchmarks CyberAware Training Security awareness & phishing sims Remote Support Start a secure support session All Customer Tools Portals, admin consoles & more
Preview Your Audit
Preview Your Audit
technological Detective ProtectDetect

A.8.17 Clock Synchronisation

M365 Admin Path: Azure Portal > Virtual machines > [VM] > Extensions + applications; Windows Admin Center > Server Manager > Services

Evidence Source: Microsoft Graph - Intune Policies

What is A.8.17 Clock Synchronisation?

ISO 27001 control A.8.17 Clock Synchronisation ensures that the clocks of all information processing systems within the organisation are synchronised to approved time sources. The control maintains accurate and consistent timekeeping across all systems, mitigating risks of inaccurate audit trails, failed event correlation, and time-based authentication vulnerabilities. Systems are synchronised to Microsoft Azure time services, Apple time services, and Google time services.

How to implement A.8.17 in Microsoft 365

Implement A.8.17 by deploying Intune configuration profiles for

Implement A.8.17 by deploying Intune configuration profiles for time synchronisation across all platforms including Windows 10 and 11 Settings Catalog, macOS Settings Catalog, and Android Device Restrictions. Configure all systems to synchronise to approved time sources including time.windows.com, time.apple.com, and time.google.com. Set organisation default time zone to South Africa Standard Time which is UTC plus 2.

Enforce UTC timestamps in all audit logs via

Enforce UTC timestamps in all audit logs via cloud platform inherent controls. Deploy browser time services via Microsoft Edge and Google Chrome.

Restrict system time modification permissions to Administrators and

Restrict system time modification permissions to Administrators and LOCAL SERVICE only.

What an auditor checks for A.8.17

  • Auditors will verify Intune configuration profiles for time synchronisation are deployed across Windows, macOS, and Android platforms.
  • They will check audit logs contain consistent UTC timestamps demonstrating synchronisation integrity.
  • Auditors will verify configuration showing system time modification restrictions are enforced on endpoints.
  • They will check cloud platform time synchronisation verification through supplier governance via Microsoft SOC 2 Type II reports.
  • Auditors will verify compliance policy deployment across all managed endpoints with 95% or higher adoption rate.

What your auditor expects for A.8.17

  • clock synchronisation controls including Azure VM time sync configuration
  • NTP settings
  • time source validation to ensure accurate timestamps for audit logging and security events

See how your organisation scores against A.8.17 and all 93 ISO 27001 controls.

Get Your Free Assessment