Hello Karthik, By design, client can be connected to the single Policy Manager only. In theory having same signing keys at both Policy Manager Servers and using same name as Policy Manager Server address for both PMs (DNS should route hosts to proper PM) will allow hosts to switch from one PM to another. But it might be a headache to manage policies for such jumping hosts and analyze statuses and alerts. I’d suggest better solution. There is a possibility to install Policy Manager Proxy in reversed mode in DMZ that will route all traffic to the internal Policy Manager, all policies, statuses, alerts, reports etc will be in the single place. The only you need is to allow PMP to PM connection (to port 443).
... View more