External Objects or better Lightning Connect is a very hot topic for every Salesforce architects especially for the CTA preparation. External Objects promise easy, click instead of code, integration with back-end systems like SAP. For a small few you can integrate any (oData compatible) external data source and interact with it as it would be a normal custom object. So far the story, which sounded to good to be true. With the help of a few Salesforce architects I cover 5 security short-comings of External Objects. I think these security topics need to be addressed if suggesting External Objects as a solution.
If you haven’t done yet, make sure you check out the External-Object Trail first.