Trouble Changing NTP Server Settings – Need Help!

Hey everyone! I'm dealing with a frustrating problem related to our NTP server settings at work and could really use some guidance. Here's the deal: our company has a mix of computers, about a third of them are hybrid joined to our domain and Entra, while the rest are only Entra joined. We manage all our devices through Intune and have a ManageEngine MDM primarily for patching and remote access.

For the last year, we've been unable to change the time server settings no matter what we try. This issue affects all users, regardless of their domain status. Trying to set the registry or using PowerShell and CMD commands hasn't been effective. We have the necessary permissions, so that doesn't seem to be the problem.

The only workaround that works is unregistering the time server using the following commands:

- net stop w32time
- w32tm /unregister
- w32tm /register
- net start w32time
- cmd /k

However, this just results in the time server settings showing as unspecified instead of pointing to the desired "time.windows.com." When attempting to sync manually, it returns an error suggesting I check network connectivity.

I've attached a couple of screenshots to help illustrate the situation:
1. Time server settings screenshot: [screenshot link]
2. Status query result: [screenshot link]

When I try to resync, I get an access denied message even when using an admin prompt, which is really strange. I've checked all our Intune configurations and policies, and there's nothing that should be affecting the time server settings. Even if I push a config to set it, the deployment says it was successful, but nothing changes. I've also consulted CoPilot, but none of the suggested solutions have worked so far.

I'm at my wit's end here! Any ideas on what might be causing this? I'm happy to provide more details if needed!