we are developing an application and use Octopus Deploy for internal environments. Our IT department manages the domain user and their passwords and the development team don’t know the passwords so they are configured as sensitive data in our Octopus project variables. Because the deployment process is complex we would like to offer our customers offline package drop for their deployments.
The problem is, that the deployment target for the offline package drop can’t execute when the project has sensitive data although the resulting properties for the offline package drop doesn’t use variables wich are configred as sensitive data. Neither can we give our customers access to Octopus to add their passwords as sensitive data.
Do you have any suggestions to solve this problem?