Original:
ONAP MUST not store authentication credentials to itself in clear text or any reversible form and must use salting.

Modified:
ONAP MUST support deployment-time generation of passwords for internal components or applications which do not support certificate based authentication or external IdP.