Within the aeenv file, the database information including the userid, password and database name, is ascii. This information can be accessed elsewhere or encrypted by using a CA Gen user exit.
The aeenv file is read by the database connection exit, dbconnct(), which for Oracle, is located within the file $IEFH/src/tiroconn.pc on the Unix/Linux platforms and C:\Program Files (x86)\CA\Gen85\Gen\tiroconn.pc on the Windows Platforms.
In here, the code can be modified so that, instead of simply reading the aeenv file ascii ids and passwords, the option exists to:
Retrieve the credentials from another location from this dbconnct() file. The credentials could be an encrypted version from this dbconnct() file. The id, password and/or database name, would need to be encrypted externally for this to work.
As tiroconn.pc is a user exit, once a modification is made, you would need to "make" the exit after modification using mkdbs, which is located within the $IEFH/make directory on the Unix/Linux platforms or mkdbs.bat within C:\Program Files (x86)\CA\Gen85\Gen\ on the Windows platform.