Application Pool Passwords 

Determines if the actual plain text password used by an application pool running under a specific identity should be read. For security reasons this is disabled by default.


SMTP Passwords 

Determines if the actual plain text password used by IIS to access SMTP servers should be read. For security reasons this is disabled by default.


Virtual Directory Passwords 

Determines if the actual plain text password used by a virtual directory to access the filesystem should be read. For security reasons this is disabled by default.