> If using an external database, what is the recommended way to securely persist the database access credentials?
The simplest in my opinion is to persist those credentials in an encrypted local file. See the globalview sample for read/write access to a local file.