• Home
  • CyberArk Enterprise Password Vault vs. HashiCorp Vault

CyberArk Enterprise Password Vault vs HashiCorp Vault comparison

Cancel
You must select at least 2 products to compare!
CyberArk Logo
CyberArk Enterprise Password Vault
Read 48 CyberArk Enterprise Password Vault reviews
7,462 views|4,622 comparisons
100% willing to recommend
HashiCorp Logo
HashiCorp Vault
Read 16 HashiCorp Vault reviews
18,352 views|12,546 comparisons
88% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
CyberArk Enterprise Password Vault vs. HashiCorp Vault
May 2024
Executive Summary

We performed a comparison between CyberArk Enterprise Password Vault and HashiCorp Vault based on real PeerSpot user reviews.

Find out in this report how the two Enterprise Password Managers solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed CyberArk Enterprise Password Vault vs. HashiCorp Vault Report (Updated: May 2024).
Download the complete report
771,212 professionals have used our research since 2012.
Featured Review
Anonymous User
Once you complete the setup, you have everything at the click of a button.
Before we implemented CyberArk, we had no password vault, so it was challenging to keep a record of who made changes and had access. With CyberArk,... Read more →
BernardParinas
Offers ability to store secret credentials and create policies using API calls, like allowing specific users to...
Before provisioning things in Azure, we use HashiCorp Vault to store service principal credentials—passwords and such. Then, we can identify if a... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature of the solution is session recording.""Super stable and easy to scale""It's a highly flexible solution that can adapt to each customer's needs.""The privileged support manager is the most valuable feature of CyberArk Enterprise Password Vault.""The password rotation and cyber gateway have been quite useful.""Our privileged accounts are now stored in a more secure location and lateral movement within the network have been lessened.""The solution is stable and reliable.""CyberArk is a good and adaptive solution. It is easy to adopt and install. It is easy for every use case."

More CyberArk Enterprise Password Vault Pros →

"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline.""It is an added value for our customers to have a Secrets Management workflow available that is PaaS/CaaS/KaaS Platform agnostic.""The solution is stable. It has been working perfectly without any problem.""It is user-friendly and easy to implement from any application point.""The tool's dynamic rotation of the password credentials is good.""The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp.""The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets.""It is a good product to consider for companies who are looking to build on-premise or hybrid infrastructure."

More HashiCorp Vault Pros →

Cons
"The solution is too big and complex for any businesses that are small or medium-sized. They should offer a more compact version or make a solution better suited to smaller businesses.""There are upwards of six components you need to set it up. And you might need anywhere from two to five servers. It takes some work to set that up, especially in a larger environment.""The initial setup could be simplified. Right now, in comparison to its nearest competitors, it's quite complex.""CyberArk Enterprise Password Vault's deployment is complex for resources with little experience. Tech support needs to be improved as well based on quality and knowledge.""The tool needs to improve its usage and interface. They need to have a modern and useful interface. I want the product to improve its integration capabilities as well since some of the integration features do not work always.""The only problem involves granting access to people who are authorized to view it.""We should be able to join small components.""The session monitoring and recording feature is also a good feature feature, but we're currently experiencing an issue with session monitoring not working correctly. We're working with CyberArk to resolve it. We aren't able to view active sessions or historical recordings of sessions."

More CyberArk Enterprise Password Vault Cons →

"A drawback for some clients who have to be PCI compliant is that they still need to use and subscribe to an HSM (Hardware Security Module) solution.""It would be helpful to have more advanced features.""We could use more documentation, primarily to do with integrations.""In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it.""The solution could be much easier to implement.""I would like to see better integration of HashiCorp Vault with SAP products.""I would rate the stability a six out of ten. There are some bugs and glitches. We are in touch with the vendor to resolve them.""I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."

More HashiCorp Vault Cons →

Pricing and Cost Advice
  • "This solution is expensive."
  • "The price of this solution is expensive."
  • "This product is very expensive."
  • "CyberArk is very expensive and there are additional fees for add-ons."
  • "It's per-company, license-based."
  • "It's an affordable platform."
  • "Licensing fees are paid on a yearly basis."
  • "Quite expensive"

    • More CyberArk Enterprise Password Vault Pricing and Cost Advice →

  • "I am using the open-source version of Vault and I would have to buy a license if I want to get support."
  • "The AWS version is much cheaper than HashiCorp Vault."
  • "It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
  • "The solution's cost is reasonable."
  • "The product is expensive."
  • "In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."

    • More HashiCorp Vault Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
    See Recommendations
    771,212 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about CyberArk Enterprise Password Vault?
    Top Answer:The password protection itself is the most important feature. It's something we didn't have before.
    Read all 34 answers   →
    What is your experience regarding pricing and costs for CyberArk Enterpri...
    Top Answer:It is expensive, but the cost is justified considering the security it provides. Compared to other solutions, it is costly. We have not tried other solutions, but the price is high. We only license… more »
    Read all 25 answers   →
    What needs improvement with CyberArk Enterprise Password Vault?
    Top Answer:The session monitoring and recording feature is also a good feature feature, but we're currently experiencing an issue with session monitoring not working correctly. We're working with CyberArk to… more »
    Read all 34 answers   →
    Which is better - HashiCorp Vault or AWS Secrets Manager?
    Top Answer:HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic… more »
    Read all 2 answers   →
    What do you like most about HashiCorp Vault?
    Top Answer:The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it… more »
    Read all 12 answers   →
    What is your experience regarding pricing and costs for HashiCorp Vault?
    Top Answer:The enterprise version would require considering factors like the level of support needed, the amount of secret data being stored, and replication needs. But in my case, the open-source version works… more »
    Read all 9 answers   →
    Ranking
    4th
    out of 36 in Enterprise Password Managers
    Views
    7,462
    Comparisons
    4,622
    Reviews
    15
    Average Words per Review
    545
    Rating
    8.4
    3rd
    out of 36 in Enterprise Password Managers
    Views
    18,352
    Comparisons
    12,546
    Reviews
    9
    Average Words per Review
    313
    Rating
    8.3
    Comparisons
    Learn More
    CyberArk
    Video Not Available
    HashiCorp
    Overview

    CyberArk Enterprise Password Vault, a vital component of the CyberArk Privileged Access Manager Solution (PAM), is designed to create, secure, rotate, and control access to privileged accounts and credentials used to access systems throughout an enterprise IT ecosystem. CyberArk Enterprise Password Vault enables enterprise organizations to better understand the scope of their privileged account risks and put controls in place to prevent malicious or inappropriate account or credential access.

    CyberArk Enterprise Password Vault uses a Central Policy Manager protocol (CPM) to perform the basic password management functions.

    • Verify Password Task - The CPM will pull the password from the vault and use it to log into the application or device to verify that the password is indeed correct and satisfies all the password safety protocols.
    • Change Password Task - The CPM will pull the password from the vault and create a new password that meets all preset protocols. It will send it to the device or application and then begin the process of changing it, using the same method that might be performed manually. The CPM will then update the password in the vault.
    • Reconcile Password Task - This task is utilized when there is a failure in either the Verify Password Task or the Change Password Task. Using a pre-established reconcile account from the vault, the CPM will use the reconcile account credentials to reset or fix problematic password issues due to changed passwords not being updated properly, new accounts being established, or any other failure with the above tasks.

    Enterprise organizations can utilize the easily adaptable policies and protocols to enforce granular privileged access controls, automate workflows, and rotate passwords at prescribed regular intervals without requiring any manual IT effort. Additionally, to satisfy compliance regulations, organizations can easily generate reports to prove that passwords are being changed regularly according to guidelines, meet strict password safety protocols, and report on which users accessed what privileged accounts, when, why, and what device they were using. Enterprise organizations can know at all times that data has remained secure at all times. CyberArk Password Vault will have enterprise organizations audit-ready at all times, keeping them safe and secure from risks while maximizing productivity and profitability.

    Reviews from Real Users

    Irma S., a program manager at a HR/Recruiting firm, said, "I love how easily we could operate within Password Vault and get things done. It was almost effortless."

    Another user, who is a security delivery analyst at a computer software company, relates that CyberArk Password Vault offers, “Good policy configuration and tech support.”



    HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management. 

    The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

    HashiCorp Vault Features

    • Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.

    • Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.

    • Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.

    • Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

    Reviews from Real Users

    The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

    “The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

    Sample Customers
    AstraZeneca, Time, DBS, Novartis, Motorola, BT, pwc, Braun, Deloitte, Williams, Revlon, Belgacom, Barclays
    Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
    Top Industries
    REVIEWERS
    Financial Services Firm30%
    Computer Software Company19%
    Comms Service Provider14%
    Energy/Utilities Company5%
    VISITORS READING REVIEWS
    Financial Services Firm24%
    Computer Software Company11%
    Government7%
    Manufacturing Company7%
    REVIEWERS
    Financial Services Firm44%
    Comms Service Provider33%
    Pharma/Biotech Company11%
    University11%
    VISITORS READING REVIEWS
    Financial Services Firm18%
    Computer Software Company16%
    Manufacturing Company7%
    Healthcare Company6%
    Company Size
    REVIEWERS
    Small Business19%
    Midsize Enterprise22%
    Large Enterprise59%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise11%
    Large Enterprise74%
    REVIEWERS
    Small Business20%
    Midsize Enterprise27%
    Large Enterprise53%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise12%
    Large Enterprise69%
    Buyer's Guide
    CyberArk Enterprise Password Vault vs. HashiCorp Vault
    May 2024
    Free Report: CyberArk Enterprise Password Vault vs. HashiCorp Vault
    Find out what your peers are saying about CyberArk Enterprise Password Vault vs. HashiCorp Vault and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    771,212 professionals have used our research since 2012.

    CyberArk Enterprise Password Vault is ranked 4th in Enterprise Password Managers with 48 reviews while HashiCorp Vault is ranked 3rd in Enterprise Password Managers with 16 reviews. CyberArk Enterprise Password Vault is rated 8.4, while HashiCorp Vault is rated 8.2. The top reviewer of CyberArk Enterprise Password Vault writes "Helps to store system accounts ". On the other hand, the top reviewer of HashiCorp Vault writes "Useful for machine-to-machine communication and has secret engine feature ". CyberArk Enterprise Password Vault is most compared with Azure Key Vault, AWS Secrets Manager, Delinea Secret Server, BeyondTrust Password Safe and LastPass, whereas HashiCorp Vault is most compared with Azure Key Vault, AWS Secrets Manager, Keeper, Delinea Secret Server and BeyondTrust Password Safe. See our CyberArk Enterprise Password Vault vs. HashiCorp Vault report.

    See our list of best Enterprise Password Managers vendors.

    We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.