You observed a developer using a configuration file to store the user's Email credentials as plain text when developing an unattended automation. What is a best practice regarding storing the credentials?
You observed a developer using a configuration file to store the user's Email credentials as plain text when developing an unattended automation. What is a best practice regarding storing the credentials?
The best practice for storing user credentials, especially sensitive ones like email credentials, is to use a Credential Store. Credential Stores securely manage and store sensitive information, ensuring that they are handled properly and protected against unauthorized access. Using a plain text configuration file is highly insecure, and even storing encrypted credentials as plain text assets in Orchestrator can still have vulnerabilities. Therefore, the correct approach is to use a dedicated Credential Store.
The given answer is correct