I would be interested in peoples thoughts on what the best practice should be for users to connect Excel to SQL Server to view database data?
I have a number of users who want to connect Excel to sql, pull into a worksheet a load of financial data, save it as a spreadsheet which they will then put into a quarterly report or similar. As a DBA it rings alarm bells and conjures up images of users leaving usb keys with financial data stored on them, on trains etc!
Beyond controlling what they can access by using an AD group with the correct people as members, and controlling their access through SQL security controls, I am not sure what the best advice would be.
I would be interested to hear what others think are arguments for or against this practice.