We have implemented the RemoteApp service in a Windows server on which we have configured the RDS service, where the launchers of all the tools that are to be started carry a string with the parameters to be passed, including the pw (account, password and asset). The string is: (--args "con name=SG-Oracle-autologon|driver=oracle_thin|url=jdbc:oracle:thin:@{asset}:1521:oracle|user={username}|password={password}"). The customer asks whether the pw (which cannot be seen in the connection string set in the launcher) is still passed unencrypted (visible) or always encrypted.
Thank you!