JBoss EAP configuration files are accessible and not encrypted (xml files), moreover, some sensitive strings could/should be store there... For obvious security reasons, JBoss EAP allows the encryption of the sensitive strings outside the configurations files.