1. How many Keys are present
--- Correct, 4 Agent Key Markers are in the keystore
2. Are we using STATIC Keys OR Dynamic Keys ?
---DYNAMIC
3. Do we know which WebAgent generated SMSESSION and which WebAgent is try to consume (SSO into) that SMSession ? It would be also beneficial to identify which Policy Server Infrastructure (i.e. Old OR New), these WebAgents are connected to.
---Yes, SMSESSION is generated by securemdl.company.com web site and is being consumed by mdlappwf.company.com. All the web agents have new policy servers in their SMHost and also the existing HCO object in SMHost files have new policy servers.
Also the Policy Store is not yet upgraded and new Policy Servers are still running in compatibility Mode while connecting to Policy/Key Store. Do you think updating the Policy/Key Store as part of 12.72 upgrade is required and will resolve the issue?