Description of problem:
Every overcloud deployment via config-download stores all the ansible roles,playbooks and variables at /var/lib/mistral/*. This includes passwords for the overcloud deployment.
We need to figure out how to encrypt this data at rest. Most likely this involves the use of ansible-vault.
Security driven feature, moving to relevant DFG