mentallurg [https://community.jboss.org/people/mentallurg] commented on the document "AS7 Password Vault on Windows" To view all comments on this document, visit: https://community.jboss.org/docs/DOC-17763#comment-11311 -------------------------------------------------- Hi merlin, JBoss vault  is *not safe*. Please keep it in mind. The vault gives you false feeling of safety. You *disclose the password* to access the vault via KEYSTORE_PASSWORD. Everyone can easily decrypt all the passwords you have encrypted. --------------------------------------------------