...
How SN does its credentials storage for discovery
...
The bottom line is that the credentials are escrowed in the instance. [1] Though they are stored on disk as 3DES ciphertext, SN holds the key. To make matters worse, this key is hard-coded, and it's the same across all SN customers. So basically we'd be trusting SN with semi-priveleged/privileged access credentials for a rather large number of Yale systems.
...