• Home
  • AWS Secrets Manager vs. Azure Key Vault

AWS Secrets Manager vs Azure Key Vault comparison

Cancel
You must select at least 2 products to compare!
Amazon Web Services (AWS) Logo

AWS Secrets Manager

Read 12 AWS Secrets Manager reviews
15,923 views|13,999 comparisons
100% willing to recommend
Microsoft Logo

Azure Key Vault

Read 46 Azure Key Vault reviews
28,069 views|19,354 comparisons
97% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
AWS Secrets Manager vs. Azure Key Vault
March 2024
Executive Summary
Updated on Mar 6, 2024

We compared AWS Secrets Manager and Azure Key Vault based on our user's reviews in several parameters.

AWS Secrets Manager focuses on efficient secret rotation and comprehensive audit trail capabilities, while Azure Key Vault highlights excellent security measures and seamless integration with Azure services. AWS Secrets Manager received positive feedback on customer service and offers competitive pricing, while Azure Key Vault excels in key management and scalability. Users suggest AWS Secrets Manager can improve documentation and integration, while Azure Key Vault users desire enhanced access management and user interface.

Features: AWS Secrets Manager excels in its ability to secure, integrate with AWS services, efficiently manage secrets, and provide an audit trail. Azure Key Vault, on the other hand, offers strong security measures, seamless integration with Azure services, ease of use in managing secrets and certificates, and efficient key management. It is also highly available, scalable, and offers comprehensive monitoring and auditing functionalities.

Pricing and ROI: AWS Secrets Manager offers competitive pricing for its setup process, with flexible licensing options. On the other hand, Azure Key Vault provides a favorable experience in terms of transparent pricing, straightforward setup cost, and seamless licensing. Users find both products efficient and user-friendly in managing their costs and acquiring licenses., AWS Secrets Manager provides positive ROI with secure management of secrets and credentials, automated secret rotation, enhanced security, and seamless integration with AWS services. Azure Key Vault offers improved ROI with secure storage and management of sensitive information, seamless integration with Azure services, increased efficiency in accessing and managing keys and secrets, and robust security measures.

Room for Improvement: AWS Secrets Manager could improve documentation, examples, integration with other services, and user interface intuitiveness. Azure Key Vault could enhance access management, user interface, error handling, and provide clearer error messages.

Deployment and customer support: According to user feedback, the duration for setting up a new tech solution varies for both AWS Secrets Manager and Azure Key Vault. While some users mentioned separate timeframes for deployment and setup with Azure Key Vault, others stated that both phases refer to the same period with AWS Secrets Manager., The customer service for AWS Secrets Manager has received positive feedback for its prompt and helpful assistance, while Azure Key Vault is praised for its effective and reliable support and responsiveness.

The summary above is based on 31 interviews we conducted recently with AWS Secrets Manager and Azure Key Vault users. To access the review's full transcripts, download our report.

To learn more, read our detailed AWS Secrets Manager vs. Azure Key Vault Report (Updated: March 2024).
Download the complete report
767,847 professionals have used our research since 2012.
Q&A Highlights
Question: Which is better - Azure Key Vault or AWS Secrets Manager?
Answer: Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governance regulations. We like that with this solution you can retrieve your user account details from the cloud. Azure Key Vault is easily scalable. We found it easy to use and the GUI is very good too. Azure Key Vault would be more attractive if it would expand endpoints. The addition of mobile devices would be great. It would also be advantageous if Azure Key Vault had better integrations and offerings for companies of all sizes. AWS Secrets Manager is quick to deploy and does a great job. The UI is easy to use and provides a good group of APIs that works well with Java, Python, etc. With AWS Secrets Manager you can rotate secrets safely without code deployments. The solution offers pay-as-you-go pricing. You can easily replicate secrets in multiple AWS regions to support your applications and disaster recovery scenarios. You need to have advanced enterprise support to get the quality assistance you need to handle issues. We would like to see AWS Secrets Manager with more customizable options; currently, it can be very cumbersome. If you are not in the AWS ecosystem, AWS Secrets Manager may not be a good fit for you. Conclusion: AWS Secrets Manager offers flexible pay-as-you-go pricing, but as a whole is a somewhat clunky solution. It is most effective in the AWS ecosystem. Azure Key Vault is very well thought-out and easy to use. We found it to be extremely secure. We like that it is Microsoft-backed and feel that it offers the best processes for encryption and ciphering of keys. As we are heavily committed to the Microsoft ecosystem, Azure Key Vault is a great fit for our organization.
Read more →
Featured Review
Raghavendra Raju
Stable solution and utilized for managing secrets within AWS
With AWS Secrets Manager, we can configure the required secrets in the secret manager, and we can access that from the Lambda service without any... Read more →
Anonymous User
Researched AWS Secrets Manager but chose Azure Key Vault: Enables you to run infrastructure as code, to fully automate creation, management of, and access to, keys
You have to have this to make sure that you're compliant with security and governance. One of the main concerns with compliance is how you manage... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is usability, as it is quite user-friendly.""The most valuable feature is the management of credentials.""The solution is very scalable.""AWS Secrets Manager is used for storing secret information that has to be a secret from your customer and your employees.""All our workloads are running on AWS, so integration with our workload is much easier on AWS Secrets Manager than going with another solution such as Thycotic.""The most valuable feature is security.""The product is easy to use and is inexpensive.""The API is fine and works well."

More AWS Secrets Manager Pros →

"The most valuable features are ease of use and enabling our clients to manage keys.""The most valuable features of Microsoft Azure Key Vault are the security and convenience of changing passwords in multiple places.""The GUI was quite easy for me to use.""A high level of security.""I would say it's granular controller who can access them.""Its customer service is excellent.""This solution speeds up the product development life cycle. That is, the time from the development of the product to the time to market is drastically reduced because of the CI/CD pipelines. You can have your code deployed within a matter of minutes.""It is a managed service in Azure, you do not have to worry about security other than managing your own identities."

More Azure Key Vault Pros →

Cons
"An area for improvement in AWS Secrets Manager could be expanding integration options beyond AWS services.""It would be good if the AWS Secrets Manager were more customizable.""The price of the solution could improve.""The solution's initial setup process is complicated.""There is room for improvement in the pricing model.""There is room for improvement in terms of integrating with certain other platforms.""If you add one more layer of security to AWS Secrets Manager, even the programmer will not be able to see the secrets.""AWS Secrets Manager could support hybrid infrastructure."

More AWS Secrets Manager Cons →

"Many times, the first round of support itself will fail, and they will bring some more competent people in the subsequent support. So it gets into a hierarchical mode. By then, we will lose a good amount of time. The technical support needs improvement.""If multiple clouds are to be used it can be difficult and a third party should assist in the implementation.""The integration with Thales HSM is complex and is not out-of-the-box. Uploading the keys was quite a tedious process.""The solution does not allow you to integrate with XML parties if it is not inside Azure itself.""Azure Key Vault takes time to fetch values while integrating it with the code written in .NET format.""The platform's configuration process could be easier.""If the region where the Azure Key Vault data center is hosted goes down, it would be a cumbersome task since our company will have to come up with a different Azure Key Vault and migrate all the secrets or keys into it.""I would rate the stability of Microsoft Azure Key Vault an eight out of ten. We use the solution in the data science field. If there is some outage, we did not notice any prolonged outage which would affect our business significantly while working with it."

More Azure Key Vault Cons →

Pricing and Cost Advice
  • "I don't believe there is a license cost for the solution."
  • "We've observed that AWS Secrets Manager pricing is based on a per-secret-per-month model. As a result, we prefer to divide our secrets into individual pieces to increase security and grant specific access permissions to certain secrets, systems, or individuals. However, this approach results in higher costs. Therefore, we have been exploring ways to combine our secrets into groups to reduce expenses and simplify management. Nonetheless, we acknowledge that this issue may not be related to the secret manager's functionality."
  • "The solution is expensive."
  • "We purchase a monthly license for the product."
  • "The cost is somewhat high."

    • More AWS Secrets Manager Pricing and Cost Advice →

  • "The cost of the Azure Key Vault is very high and the pricing model is based on the number of keys that you store and retrieve."
  • "The pricing is decent. It has a pretty low price. It is a straightforward cost based on usage."
  • "Pricing is quite reasonable and support is included, although premium support is available for an additional fee."
  • "Key Vault, like every Azure service, has a cost associated with it, but you don't have to spend thousands of dollars to spin up an environment to build a key management system. It's already there."
  • "The price of the solution is reasonable for what we are using it for."
  • "Azure is cheaper than CyberArk... CyberArk is good, but it's quite expensive."
  • "The price isn't high. Any sized organization could easily adopt it. The first 250 keys are available for $5 per month."
  • "The pricing is reasonable and flexible, especially for those already using Microsoft Azure Cloud services. There is a cost associated with retrieval and storage, which is a few dollars. Otherwise, the price can be customized according to requirements, such as how many keys need to be stored."

    • More Azure Key Vault Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
    See Recommendations
    767,847 professionals have used our research since 2012.
    Questions from the Community
    Which is better - Azure Key Vault or AWS Secrets Manager?
    Top Answer:Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governance… more »
    Which is better - HashiCorp Vault or AWS Secrets Manager?
    Top Answer:HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic… more »
    Read all 2 answers   →
    What do you like most about AWS Secrets Manager?
    Top Answer:The most valuable feature of AWS Secrets Manager is its seamless integration with various AWS services.
    Read all 9 answers   →
    What do you like most about Microsoft Azure Key Vault?
    Top Answer:Considering the features provided by the product, I would say that the solution is available at a good price point.
    Read all 26 answers   →
    What is your experience regarding pricing and costs for Microsoft Azure K...
    Top Answer:Considering the features provided by the product, I would say that the solution is available at a good price point. The payment is made as a whole for all the Microsoft products used in our companies… more »
    Read all 18 answers   →
    What needs improvement with Microsoft Azure Key Vault?
    Top Answer:The product must provide AI features.
    Read all 25 answers   →
    Ranking
    3rd
    out of 35 in Enterprise Password Managers
    Views
    15,923
    Comparisons
    13,999
    Reviews
    9
    Average Words per Review
    334
    Rating
    8.8
    1st
    out of 35 in Enterprise Password Managers
    Views
    28,069
    Comparisons
    19,354
    Reviews
    30
    Average Words per Review
    408
    Rating
    8.7
    Comparisons
    Also Known As
    Microsoft Azure Key Vault, MS Azure Key Vault
    Learn More
    Amazon Web Services (AWS)
    Microsoft
    Overview

    AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

    Microsoft Azure Key Vault is a cloud-based data security and storage service that allows users to keep their secrets safe from bad actors.

    Benefits of Microsoft Azure Key Vault

    Some of the benefits of using Microsoft Azure Key Vault include:

    • Secure your secrets in a single central location, enabling you to control how your information is disseminated.
    • Keep your data away from bad actors. Application administrators can store their application’s security information away from the actual application. Microsoft Azure Key Vault reduces the chance that a bad actor will be able to leak an application’s secrets. Because the data is not stored in the code of the application, hackers will be unable to steal the security information.
    • Retrieve your information securely. When the information is needed, the application can securely retrieve it by using a uniform resource identifier (URI) to connect to Microsoft Azure Key Vault.
    • Securely store your digital keys and secrets. Microsoft Azure Key Vault stores data behind layers of security protocol. No one can access the information stored in a Microsoft Azure Key Vault without first obtaining the necessary authentication and authorization. The authentication process allows the system to figure out who is trying to access the vault in question. This process is performed by Azure’s Active Directory. After the person or entity is authenticated, Microsoft Azure Key Vault then assigns them a level of authorization. This determines what sort of actions they will be able to perform.
    • Choose from two different authorization options. The level of a user’s authorization can be either role-based or dictated by a policy that the administrator sets. Azure’s role-based access control (Azure RBAC) enables users to both manage and access stored data. A key vault access policy limits users to data access.
    • Secure your data in the way that best fits your needs. Your data can be protected by either industry-standard algorithm software or hardware security modules (HSMs). Your data is even safe from Microsoft, as the vaults are designed so that not even Microsoft can get in and access the information.
    • Easily monitor who accesses your vault(s). Microsoft Azure Key Vault enables administrators to keep a close eye on their secrets. Users can activate a vault-logging feature that will track every piece of information. It will record who accessed the vault, when they accessed it, and other pertinent details.
    • Choose how you want to store your logs. Users can store logs in multiple ways. These logs can be archived, sent to the Azure monitor logs area, or streamed to an events hub. The logs can be secured to prevent unauthorized viewing and deleted when they are no longer needed.

    Reviews from Real Users

    Microsoft Azure Key Vault stands out among their competitors for a number of reasons. Two major ones are the overall robustness of the solution and its ability to protect and manage many different digital asset types. The many features that the solution offers allows users to tailor their experience to meet their specific needs. Its flexibility enables users to accomplish a wide variety of security and identity management related tasks. It empowers users to secure a wide array of assets. Users can keep many different types of secrets away from bad actors.

    A cloud architect at a marketing services firm writes, “All its features are really valuable. It's really well thought-out. It's a complete turnkey solution that has all the concerns taken care of, such as access control and management. You can use it in infrastructure as code to create key vaults, APIs, PowerShells, CLIs, even Terraform. You can also use it in different services across the board. If you have app services, or virtual machines, Kubernetes, or Databricks, they can all use Key Vault effectively. In my opinion, in a DevSecOps, DevOps, or even in a modern Azure implementation, you have to use Azure Key Vault to make sure you're addressing security and identity management concerns. By "identity" I mean usernames, passwords, cryptography, etcetera. It's a full-blown solution and it supports most breeds of key management: how you store keys and certify.”

    Roger L., the managing director of Cybersecurity Architecture at Peloton Systems, says, “The most valuable aspect of the product is its ability to keep our admin password accounts for keys and a lot of our high-value assets. It can manage those types of assets. So far, the product does a great job of managing keys.”

    Sample Customers
    Autodesk, Clevy, Stackery
    Adobe, DriveTime, Johnson Controls, HP, InterContinental Hotels Group, ASOS
    Top Industries
    REVIEWERS
    Computer Software Company50%
    Energy/Utilities Company13%
    Manufacturing Company13%
    Transportation Company13%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm14%
    Manufacturing Company7%
    Insurance Company6%
    REVIEWERS
    Computer Software Company27%
    Financial Services Firm23%
    Security Firm4%
    Paper And Forest Products4%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Financial Services Firm13%
    Manufacturing Company8%
    Government6%
    Company Size
    REVIEWERS
    Small Business50%
    Large Enterprise50%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise14%
    Large Enterprise66%
    REVIEWERS
    Small Business28%
    Midsize Enterprise23%
    Large Enterprise49%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise14%
    Large Enterprise67%
    Buyer's Guide
    AWS Secrets Manager vs. Azure Key Vault
    March 2024
    Free Report: AWS Secrets Manager vs. Azure Key Vault
    Find out what your peers are saying about AWS Secrets Manager vs. Azure Key Vault and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,847 professionals have used our research since 2012.

    AWS Secrets Manager is ranked 3rd in Enterprise Password Managers with 12 reviews while Azure Key Vault is ranked 1st in Enterprise Password Managers with 46 reviews. AWS Secrets Manager is rated 8.8, while Azure Key Vault is rated 8.6. The top reviewer of AWS Secrets Manager writes "Seamlessly integrates with various AWS services while offering reasonable pricing". On the other hand, the top reviewer of Azure Key Vault writes "Allows us to securely store our keys to prevent unauthorized access to unwanted users". AWS Secrets Manager is most compared with HashiCorp Vault, 1Password, CyberArk Enterprise Password Vault, BeyondTrust Password Safe and Delinea Secret Server, whereas Azure Key Vault is most compared with HashiCorp Vault, CyberArk Enterprise Password Vault, AWS Certificate Manager, Delinea Secret Server and 1Password. See our AWS Secrets Manager vs. Azure Key Vault report.

    See our list of best Enterprise Password Managers vendors.

    We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.