What is the best practice for setting the IIS Physical Path Credentials Logon Type when using WebLink?  We currently have it set for Clear Text.  We are covered under HIPAA so we need to protect the PII & PHI information that we store in Laserfiche as well as securing the logons that control access to Laserfiche services and MS Windows supporting services and systems.  We currently use a domain account to log in the WebLink virtual directories. We understand using a domain account is not the ideal solution.