On any page that is adding the password to the db you will need to encrypt the value when it is being inserted. So in an insert server behavior you would apply the sha1 to the value that you are setting for the password column. This is the same for any page that sets the password in the db, you format it within the insert or update server behavior.