best response confirmed by Ralfxyz (Occasional Contributor)
Solution

@Ralfxyz , no, we do not sync passwords or hashes of AD entities.

The only passwords we keep are for the read only account/accounts you supply in the portal configuration page, so we can connect to AD to read info etc.

Those passwords are of course kept secure, yet we still recommend to use read only low privileged accounts for this.