• Home
  • HashiCorp Vault vs. LastPass

HashiCorp Vault vs LastPass comparison

Cancel
You must select at least 2 products to compare!
HashiCorp Logo

HashiCorp Vault

Read 15 HashiCorp Vault reviews
18,803 views|12,881 comparisons
88% willing to recommend
LastPass Logo

LastPass

Read 12 LastPass reviews
2,887 views|2,687 comparisons
78% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Enterprise Password Managers
March 2024
Executive Summary

We performed a comparison between HashiCorp Vault and LastPass based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, HashiCorp, Amazon Web Services (AWS) and others in Enterprise Password Managers.
To learn more, read our detailed Enterprise Password Managers Report (Updated: March 2024).
Download the complete report
767,847 professionals have used our research since 2012.
Featured Review
BernardParinas
Offers ability to store secret credentials and create policies using API calls, like allowing specific users to...
Before provisioning things in Azure, we use HashiCorp Vault to store service principal credentials—passwords and such. Then, we can identify if a... Read more →
Mike Klaus
Straightforward to set up, good support, intuitive to use, and offers good value for the cost
LastPass uses one password to get into everything, which has to be secure because if somebody does get that main password for a certain user then... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline.""We use the solution for secret management.""It is an added value for our customers to have a Secrets Management workflow available that is PaaS/CaaS/KaaS Platform agnostic.""For me, the most valuable features include that it's easy to manage and maintain the password API for retrieving passwords and other things.""The tool's dynamic rotation of the password credentials is good.""The product is free and easy to use. It is well documented with an easy implementation process.""We were using it because we have compliance requirements around secret management. Having a secure vault and encrypting data was an additional requirement. When we looked at it first, we were just looking for a vault, like a lockbox. The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive.""This solution is easy to use and to integrate."

More HashiCorp Vault Pros →

"The most valuable feature is the liberty of keeping encrypted passwords and elevated information in a sealed vault.""Reduction in number of sensitive passwords stored insecurely on local systems.""The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good.""Off-boarding of people is easy without changing shared account passwords.""Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do.""The most valuable feature for me is being able to pair applications and user permissions.""This product helps keep us secure.""The initial setup for this process is straightforward and extremely easy. It just works."

More LastPass Pros →

Cons
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it.""The solution's initial setup process is complicated.""The onboarding is a challenge. It should be more self-service, but it involves reviews and approvals.""There could be a plugin for the database to change the secret automatically. It would be an efficient feature for password security.""It would be helpful to have more advanced features.""The solution could be much easier to implement.""The product needs to improve its customization. It should be also more like easy to plug and play.""I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."

More HashiCorp Vault Cons →

"Our biggest issue over the years was around the stability of the LDAP sync to AD.""One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself.""Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data.""The management through the plugin is poor. It consumes tons of client resources especially as an administrator.""I would like to be able to reduce the log out time of the session.""The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass.""The ability to set up an account expiration limit/date would be very useful.""I also don't like the add-in for Internet Explorer and Google Chrome, because when you do the add-in, you can actually save that to your credentials in your IE, and the problem is, if I left my screen open, or any of the IT people leave their screen open someone could come up and access all their credentials in LastPass without having to put a password in within your own network. I don't like that functionality. We've banned that from any of our staff adding that as an add-in because we see that as a security risk."

More LastPass Cons →

Pricing and Cost Advice
  • "I am using the open-source version of Vault and I would have to buy a license if I want to get support."
  • "The AWS version is much cheaper than HashiCorp Vault."
  • "It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
  • "The solution's cost is reasonable."
  • "The product is expensive."
  • "In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."

    • More HashiCorp Vault Pricing and Cost Advice →

  • "If you import from sources like XML, keepass, CSV files be sure to clean the import files, this reduces the adjustments in the slow tool itself."
  • "You do not have to purchase licenses for your entire organization. You can scale as adoption grows."
  • "The previous pricing was of good value. I don't really know, as of now, whether the new pricing is. The Enterprise license is $48 per license per year now. That is a steep increase of $24, which is what it was when we first signed up."
  • "It would be nice to do a quarterly true-up process with them versus having to buy 50 licenses at a time when we realize we're out, then we have to buy more. So far, they have been nice about letting us exceed our allotment and just letting us true-up on our own, but a more robust quarterly true-up process would be good."
  • "The pricing and licensing are okay. Basically, at the last contract negotiation, they attempted to jack the rate up and we just said, "No." We still did negotiations with them, but they bumped everything up quite a bit."
  • "LastPass was cheap as chips. It was very cheap, hence one of the reasons we went with it. If you're a small organization and you're after something that'll do 90% of your requirements, it's very good. Licensing and all that was really cheap and simple to understand."
  • "I have been involved with many password managers. Passportal, Secret Server, CyberArk, and BeyondTrust. I chose LastPass for our organization because of the pricing. The organization didn't want to implement something really expensive. LastPass, for what it's offering, for the price that it's offering the service, is unbeatable."
  • "In terms of pricing, my feeling is that they are all roughly the same. LastPass is in line with its competitors, plus or minute a dollar or two per month."

    • More LastPass Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
    See Recommendations
    767,847 professionals have used our research since 2012.
    Questions from the Community
    Which is better - HashiCorp Vault or AWS Secrets Manager?
    Top Answer:HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic… more »
    Read all 2 answers   →
    What do you like most about HashiCorp Vault?
    Top Answer:It's stable. I would rate the stability a nine out of ten.
    Read all 11 answers   →
    What is your experience regarding pricing and costs for HashiCorp Vault?
    Top Answer:The enterprise version would require considering factors like the level of support needed, the amount of secret data being stored, and replication needs. But in my case, the open-source version works… more »
    Read all 9 answers   →
    Ask a question

    Earn 20 points

    Ranking
    2nd
    out of 35 in Enterprise Password Managers
    Views
    18,803
    Comparisons
    12,881
    Reviews
    9
    Average Words per Review
    447
    Rating
    8.4
    17th
    out of 35 in Enterprise Password Managers
    Views
    2,887
    Comparisons
    2,687
    Reviews
    0
    Average Words per Review
    0
    Rating
    N/A
    Comparisons
    Also Known As
    LastPass Business, LastPass Enterprise, Lastpasss
    Learn More
    HashiCorp
    LastPass
    Overview

    HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management. 

    The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

    HashiCorp Vault Features

    • Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.

    • Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.

    • Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.

    • Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

    Reviews from Real Users

    The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

    “The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

    Auto-pilot for all your passwords

    LastPass removes obstacles, letting you get back to the things you love most.

    Log in and go

    Once you save a password in LastPass, you'll always have it when you need it; logging in is fast and easy.

    Passwordless login

    Gain instant access to your LastPass vault by using the LastPass Authenticator instead of your master password.

    Generate strong passwords

    The built-in password generator creates long, randomized passwords that protect against hacking.

    Store digital records

    Insurance cards, memberships, Wi-Fi passwords... keep all your notes safe and easy to find.

    Share effortlessly

    Some things shouldn't be sent in a text. Conveniently and safely share passwords and notes with anyone.

    Dark web monitoring

    Stop worrying about data breaches. Get alerts if your personal information is at risk.

    Sample Customers
    Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
    Deakin University, Duke University, Code.org, Influitive, PeopleKeys, SMA Technologies, Skynamo
    Top Industries
    REVIEWERS
    Financial Services Firm44%
    Comms Service Provider33%
    Pharma/Biotech Company11%
    University11%
    VISITORS READING REVIEWS
    Financial Services Firm18%
    Computer Software Company15%
    Manufacturing Company7%
    Healthcare Company6%
    REVIEWERS
    Retailer13%
    Engineering Company13%
    Non Tech Company13%
    Legal Firm13%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Insurance Company10%
    Financial Services Firm9%
    Comms Service Provider6%
    Company Size
    REVIEWERS
    Small Business20%
    Midsize Enterprise27%
    Large Enterprise53%
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise12%
    Large Enterprise69%
    REVIEWERS
    Small Business53%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise13%
    Large Enterprise60%
    Buyer's Guide
    Enterprise Password Managers
    March 2024
    Download Free Report
    Find out what your peers are saying about Microsoft, HashiCorp, Amazon Web Services (AWS) and others in Enterprise Password Managers. Updated: March 2024.
    DOWNLOAD NOW
    767,847 professionals have used our research since 2012.

    HashiCorp Vault is ranked 2nd in Enterprise Password Managers with 15 reviews while LastPass is ranked 17th in Enterprise Password Managers. HashiCorp Vault is rated 8.2, while LastPass is rated 7.4. The top reviewer of HashiCorp Vault writes "Easy to manage and maintain the password API but stability could be improved". On the other hand, the top reviewer of LastPass writes "Straightforward to set up, good support, intuitive to use, and offers good value for the cost". HashiCorp Vault is most compared with Azure Key Vault, AWS Secrets Manager, CyberArk Enterprise Password Vault, Delinea Secret Server and 1Password, whereas LastPass is most compared with Azure Key Vault, BeyondTrust Password Safe, Keeper, CyberArk Enterprise Password Vault and OneLogin by One Identity.

    See our list of best Enterprise Password Managers vendors.

    We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.