I found that the NTP server doesn't really work. I'll try to deploy a NTP server, and see if the problem solved. thanks for kind help.~^_^~
Here is an extra question if the AD server's timesync matters? does AD need to be configured to the same NTP server? thx~