Which Top Secret files include the password within them for user ACIDs (ie AIX, PATH, VSAM, DATA) ?

Release : 16.0

Component : CA Top Secret for z/OS

The users’ passwords are stored on the BDAM security file and the backup BDAM security file. The passwords are not in the AIX, PATH, or VSAM security (or VSAM backup) files. 

When a password is changed either via a user signon or an administrator, a command is stored in the Top Secret recovery file (with the password encrypted). This is in case the security file becomes unusable and forward recovery needs to be run. The recovery file is a wrappable file, meaning once it fills up, new records are written at the beginning of the file, overlaying the old records.