Hiding Connection String in excel

N

Naderus

New Member
Joined
Jul 29, 2015
Messages
21
Dear Experts,

we are facing in our organization an audit issue with excel as most of our reports are connected directly to SQL server.
the risk that has been raised by audit is that in the connection string and the user name and password are visible.

we are following this method for our automation reports as when we generate a report and we connect this report to SQL the user will be able to refresh it once the data in SQL is refreshed.

the message in connection string is shown as below:
PS: i will put fake user id and IP

connection string:
Provider=SQLOLEDB.1;Password=FAKEPASSWORD;Persist Security Info=True;User ID=xx_fake ;Initial Catalog=BI;Data Source=100.10.65.85,8966;Use Procedure for Prepare=1;Auto Translate=True;Packet Size=4096;Workstation ID=W1111111;Use Encryption for Data=False;Tag with column collation when possible=False

my question is there a way that we can keep this connection but either hide it or encrypted.

thank in advance.
Regards,
Nader
 

Excel Facts

Waterfall charts in Excel?
Office 365 customers have access to Waterfall charts since late 2016. They were added to Excel 2019.
Sort by date Sort by votes
You can lock the VBA, that takes care of casual viewers.

You could deny access on your SQL to unknown users / MAC Address (I think) so it can't be machine hopped

Ensure that you only share books with authorised users

You might think of using a very secure sheet as the source for the connection, so its not sat in the VBA
 
Upvote 0
so what does the audit team suggest
 
Upvote 0
Naderus said:
Thank you but i don't think the above will fix the issue. :)
Click to expand...

What about having a userform pop up where the user has to input Username and Password which then you will use to build up the connection string. Then when you try to connect to the database you can first test if your program successfully establishes the connection or if you get a wrong user id/password error.
 
Upvote 0
They didn't suggest anything they are just highlighting this issue as a critical issue, since it does not compile with the organization policy and everyone can see the connection information.
 
Upvote 0
You must log in or register to reply here.

Similar threads

S
  • Question Question
Automation error Unspecified error
Replies
0
Views
560
Suavesav
S
A
  • Question Question
Import Table Data from Web using VBA to excel Worksheet and able to input Values which can modify the web data to be extract
Replies
0
Views
635
Ambrosia
A
B
  • Question Question
ADODB RecordSet Question = Row Headers?
Replies
1
Views
1K
bblevins
B
T
  • Solved
VBA / SQL - detect if record exists in database table?
Replies
2
Views
1K
TheWennerWoman
T
J
  • Question Question
Excel ListObjects.Add() via OLEDB Very Slow
Replies
2
Views
1K
Jazattack
J

Forum statistics

Threads
1,223,236
Messages
6,170,906
Members
452,366
Latest member
TePunaBloke

Share this page

We've detected that you are using an adblocker.

We have a great community of people providing Excel help here, but the hosting costs are enormous. You can help keep this site running by allowing ads on MrExcel.com.
Allow Ads at MrExcel

Which adblocker are you using?

Disable AdBlock

Follow these easy steps to disable AdBlock

1)Click on the icon in the browser’s toolbar.
2)Click on the icon in the browser’s toolbar.
2)Click on the "Pause on this site" option.
Go back

Disable AdBlock Plus

Follow these easy steps to disable AdBlock Plus

1)Click on the icon in the browser’s toolbar.
2)Click on the toggle to disable it for "mrexcel.com".
Go back

Disable uBlock Origin

Follow these easy steps to disable uBlock Origin

1)Click on the icon in the browser’s toolbar.
2)Click on the "Power" button.
3)Click on the "Refresh" button.
Go back

Disable uBlock

Follow these easy steps to disable uBlock

1)Click on the icon in the browser’s toolbar.
2)Click on the "Power" button.
3)Click on the "Refresh" button.
Go back
Back
Top