Can we deploy Policy store, Key Store and Session Store in the same VM in production environment. We use CA directory for all of them. Is this recommended?
Any Single Sign On version
Yes you can deploy a Policy store, Key Store and Session Store in the same VM but the Session Store must have it own schemea, so it needs to be in a separate directory server instance. The key store is already part of the policy store schema, so you could have two directory instances, one for policy store and key store, and then the second for Session Store, or have 3 directory instances, each with an explicit purpose.