Passwords are masked in audit records. For example, if the SSO has enabled command text auditing (that is, auditing all actions of a particular user) for user “alan” in database db1:
sp_audit "cmdtext", "alan", "db1", "on"
And “alan” issues this command:
create encryption key key1 with passwd "bigsecret"
Adaptive Server writes the following SQL text to the extrainfo column of the audit table:
"create encryption key key1 with passwd "xxxxxx"
