As with any directory technology, it is important that you follow safe practices any time that you are using passwords. Follow these guidelines when you create and use password extensions in Forefront Identity Manager Synchronization Service (FIM Synchronization Service):
- Do not write passwords to a file.
- Do not pass user names or passwords in
exception messages.
- Do not use embedded SQL statements in
passwords strings.
- Do not use XML characters, such as "<" or
">", in password strings.