Hello,
It is actually not mandatory to maintain the user and password.
You can activate the "current user" flag.
This way the logon will be performed with the currently logged on user ID.
Notice that if you define the user and password all actions performed on the target system will be made under that user ID. Thus, it would be very difficult (if not impossible) to track who did what...
Regards,
Isaías