When ENCRYPT is specified in the relevant GSO NJE record, any time that a password is specified in the JCL it will be encrypted.
(apart from the exclusion below).
This includes /*PASSWORD //*PASSWORD and PASSWORD= on the jobcard.
NOINHERIT/INHERIT is not relevant to the password encryption process.
Techdocs for reference
Specifies that the password provided on jobs that are sent to this node for validation are in a partially encrypted format using the XDES algorithm.
NOENCRYPT specifies that the password is sent in clear-text format.
Nodes that use no security system or use a security package other than
ACF2, must be sent passwords in clear text format.
When the password is longer than eight characters, it is always encrypted before being sent to the other system.
Note:
If the job is sent by an /*XMIT statement, ENCRYPT does not apply to any password specified on the second job statement.
In this case, the password is sent in clear text format.
If the job is sent by an /*ROUTE XEQ statement, ENCRYPT cannot be used when attempting to do a password change in the job.
All password changes fail on the remote system.