Since VMEP is running with a dedicated user account it is possible to connect to SQL server without showing the password in VMEP web.config by using SQL Integrated security.
1.Create a Windows based login account in SQL server using the VMEPuser account.
2.Give this account the required right to the system and company database. Normally db_owner and mapped to the dbo schema, but this needs to be adapted to the individual installation.
3.Use the VMEP Configuration tool or IIS Manager to select Integrated security. Alternatively edit web.config in a text editor and replace username and password with: Integrated Security=SSPI