If you are configuring Cloud Resolver to authenticate with a proxy server, you can store the credentials in a secrets vault on Azure, GCP, or within a separate HashiCorp Vault server. This enhances security and ensures that the proxy credentials are not stored in plain text in the Cloud Resolver configuration file.