I am just want to understand what is PM signing keys !??
and when should we back-them-up !? after we finish the installation of Policy Manager or after we do all the configurations !??
Actually it is the other way around. PM signs using the private key and the clients(Workstations or servers ) are confirming the origin of the packages they received using the public key.
The updates coming from our Updates Servers are also signed. However this is not related to the administrative key pair used in the PM.
The signing key are used to secure the communication between the Policy Manager and the managed hosts. You can back them up as soon as they are in use.
To do that follow the instructions on page 50 of the admin guide.
sir I have a question,
when the PM wants to send a message to the hosts, what key it will use to encrypt this message !?
Policy Manager communicates (new policies, upgrades) with the hosts using the Admin key pair signing.
The keys themselves are encrypted.