IBM SGKLM v4.1.1 user passwords are stored in the server.xml file. By default, the plain-text passwords are encoded using a "custom" algorithm. The values in the file can be changed to be encoded using an "aes" routine, but that doesn't change the default method of encoding. As soon as a user changes their password, it is again placed into the file using the "custom" method.
Do not place IBM confidential, company confidential, or personal information into any field.