First off – I am not an oracle DBA; I work in a risk role.
However, for audit/risk purposes, I am told is common for DBA’s to have documents containing passwords about the Databases they support, and host servers, in plain text. I believe this is for continuity purposes. Is this true?
For what reasons do you keep passwords in documents and what do you refer to such documents as?
Is there a risk in not having passwords documented anywhere? Please elaborate in layman’s terms.