HashiCorp Vault Overview

HashiCorp Vault is the #4 ranked solution in our list of top Enterprise Password Managers. It is most often compared to Microsoft Azure Key Vault: HashiCorp Vault vs Microsoft Azure Key Vault

What is HashiCorp Vault?

Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, or certificates. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

Buyer's Guide

Download the Enterprise Password Managers Buyer's Guide including reviews and more. Updated: June 2021

HashiCorp Vault Customers
Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
HashiCorp Vault Video

Pricing Advice

What users are saying about HashiCorp Vault pricing:
  • "I am using the open-source version of Vault and I would have to buy a license if I want to get support."

Filter Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
SN
Cloud Solutions Architect
Real User
Easy to use and integrate, but the documentation needs to be updated and improved

What is our primary use case?

We are currently conducting a PoC with HashiCorp vault to see if it meets our requirements. I have ten different use cases for the evaluation. We are integrating it into our Key Management Service. In my previous company, we were using it to store all of our keys and secret certificates.

Pros and Cons

  • "This solution is easy to use and to integrate."
  • "The documentation is very general; it should have more examples and more use cases."

What other advice do I have?

One of the questions that I have been trying to solve is whether it is possible to update the cloud AWS keys from the on-premises solution. I have been through the documentation and the blogs and still do not know whether it is possible. Definitely, they can be managed once they have been deployed into the cloud, but I want to know the other way around. Our intention is ultimately to deploy on-premises, which is why this is important. My advice for anybody who is implementing this solution is to fully go through the documentation and understand all of the use cases before implementing it. I…
Sylvain Déjardin
TechOps Engineer - Middleware & Containers specialist at EBRC -European Business Reliance Centre
Real User
Top 5Leaderboard
A Multi-platform solution to provide security and PCI compliance

What is our primary use case?

This is a Secrets Management framework to manage a keystore, certificates, and passwords dynamically in a Platform as a Service context, such as Vanilla Kubernetes Platforms, Rancher, Meso, Tectonic, and Origin/OpenShift Enterprise Platforms. Whatever the platform, this product can help provide good security and be PCI Compliant.

Pros and Cons

  • "It is an added value for our customers to have a Secrets Management workflow available that is PaaS/CaaS/KaaS Platform agnostic."
  • "A drawback for some clients who have to be PCI compliant is that they still need to use and subscribe to an HSM (Hardware Security Module) solution."
Find out what your peers are saying about HashiCorp, CyberArk, Microsoft and others in Enterprise Password Managers. Updated: June 2021.
511,307 professionals have used our research since 2012.
RamanaBhavaraju
Founder & Principal Architect at NCompas Business Solutions Inc.
Real User
Top 5Leaderboard
A secure solution for storing secrets

What is our primary use case?

Primarily, we use this solution for the secret management side of things. Initially, we were using Azure Key Vault, but we kind of shifted to HashiCorp Vault because we are using Terraform scripts, etc. We needed a common storage mechanism.

Pros and Cons

  • "It can still be configured by a separate team other than developers. That's why I think it's more secure."
  • "We could use more documentation, primarily to do with integrations."

What other advice do I have?

Be careful about how you structure your Terraform scripts. You should probably start off with some examples already given by HashiCorp before you begin implementation. Once you've gone too deep, it's difficult to factor things in and out of it. Carefully read the documentation right from the get-go. Overall, on a scale from one to ten, I would give HashiCorp Vault a rating of eight.
Buyer's Guide
Download our free Enterprise Password Managers Report and find out what your peers are saying about HashiCorp, CyberArk, Microsoft, and more!