We performed a comparison between HashiCorp Vault and LastPass based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Amazon Web Services (AWS), HashiCorp and others in Enterprise Password Managers."It can still be configured by a separate team other than developers. That's why I think it's more secure."
"It is a good product to consider for companies who are looking to build on-premise or hybrid infrastructure."
"The interface is very simple to navigate."
"The solution is stable. It has been working perfectly without any problem."
"The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp."
"We were using it because we have compliance requirements around secret management. Having a secure vault and encrypting data was an additional requirement. When we looked at it first, we were just looking for a vault, like a lockbox. The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive."
"For me, the most valuable features include that it's easy to manage and maintain the password API for retrieving passwords and other things."
"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline."
"The most valuable feature is the liberty of keeping encrypted passwords and elevated information in a sealed vault."
"The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good."
"Reduction in number of sensitive passwords stored insecurely on local systems."
"It's improved security; we don't have to worry about people storing password loosely and secure them."
"Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do."
"The most valuable feature for me is being able to pair applications and user permissions."
"The shared folders is an important feature. It's the primary feature we use. Also, the ability for LastPass to autofill and hide the passwords, so we don't have to keep changing passwords every time a person leaves, is valuable."
"Off-boarding of people is easy without changing shared account passwords."
"The onboarding is a challenge. It should be more self-service, but it involves reviews and approvals."
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."
"The solution could be much easier to implement."
"The solution's initial setup process is complicated."
"The product needs to improve its customization. It should be also more like easy to plug and play."
"I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."
"There could be a plugin for the database to change the secret automatically. It would be an efficient feature for password security."
"In my opinion, HashiCorp Vault could improve its user interface. Right now, they don't offer much in terms of a graphical interface, which means you usually have to manage things manually through API calls. I think CyberArk has a better approach because it provides a UI that integrates features across all its components, making it easier, especially for new users or those from organizations with strict licensing policies."
"We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine."
"I struggle a little bit with the mobile app. As a browser extension, it works really well, and we are able to get to what we need to. However, on the phone, it's not quite as easy to navigate."
"The ability to set up an account expiration limit/date would be very useful."
"Its user interface should be better, and there should probably be more information about scalability."
"The management through the plugin is poor. It consumes tons of client resources especially as an administrator."
"Our biggest issue over the years was around the stability of the LDAP sync to AD."
"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."
"LastPass has a problem syncing the passwords to all of the users."
Earn 20 points
HashiCorp Vault is ranked 3rd in Enterprise Password Managers with 16 reviews while LastPass is ranked 17th in Enterprise Password Managers. HashiCorp Vault is rated 8.2, while LastPass is rated 7.4. The top reviewer of HashiCorp Vault writes "Useful for machine-to-machine communication and has secret engine feature ". On the other hand, the top reviewer of LastPass writes "Straightforward to set up, good support, intuitive to use, and offers good value for the cost". HashiCorp Vault is most compared with Azure Key Vault, AWS Secrets Manager, CyberArk Enterprise Password Vault, Keeper and 1Password, whereas LastPass is most compared with Azure Key Vault, BeyondTrust Password Safe, Keeper, CyberArk Enterprise Password Vault and Delinea Secret Server.
See our list of best Enterprise Password Managers vendors.
We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.