{% for server in ntp_servers %}
server {{ server }} iburst
{% endfor %}
keyfile {{ ntp_chrony_keyfile }}
driftfile /var/lib/chrony/drift
{% if ansible_virtualization_role == "guest" %}
# Virtualization guest, so allow unlimited steps if the clock is more than 5sec off
makestep 5 -1
{% else %}
makestep 1.0 3
{% endif %}
rtcsync
{% if samba_role is defined and samba_role in ['dc','rodc'] %}
# Running Samba DC
ntpsigndsocket /var/lib/samba/ntp_signd
allow all
{% endif %}