Passwords are masked in audit records. For example, if the SSO has enabled command text auditing (that is, auditing all actions of a particular user) for user Alan (user ID “alan”) in database db1:
sp_audit "cmdtext", "alan", "db1", "on"
And Alan issues this command:
create encryption key key1 with passwd "bigsecret"
Adaptive Server writes the following SQL text to the extrainfo column of the audit table:
"create encryption key key1 with passwd "xxxxxx"