Is there any advantages/disadvantages of setting vSphere as Cloud Provider during cluster creation (in Rancher UI)? Or should I always set to External and install vSphere CPI/CSI from Apps?

I am concerned as well about the security of the mechanism rancher uses to pass the vsphere credentials to the downstream rke2 cluster. Installing vsphere cpi/csi on the downstream cluster after the fact seems to provide more control over how credentials are transferred and managed.