I’d like to add NTP to my on-prem infra so that clients/servers can agree on when certificates have expired. This box would almost do the job, but it doesn’t seem to support secure NTP. Secure NTP allows a client to cryptographically verify that time was delivered from a trusted source and not a spoofer. Without this mechanism, spoofing is trivial, which means making compromised certificates appear valid is also all too easy.