One time we lost the app user password that was being used for API for CCX in our lab. I ended up using a cert to decrypt the connection, pointed CCX at myself, and let it attempt to sign in. Then base64 decoded the password with wireshark. Not great but it is doable if you get into that sort of scenario. Adam