The built-in credential vault is an integral part of the Commvault platform. Credentials are stored securely in the built-in vault and are encrypted, providing an additional layer of security. The software uses AES-256 to encrypt the passwords of these accounts. Optionally, you can use a key management server to protect the encryption key used for encrypting passwords. For instructions to configure a key management server, see Configuring a Key Management Server to Secure the Passwords of Application User Accounts.
The built-in credential vault adheres to Commvault's role-based access control policies, ensuring that only authorized users can access and manage the stored credentials.