If you were talking to someone whose organization is considering HashiCorp Vault, what would you say?
How would you rate it and why? Any other tips or advice?
Be careful about how you structure your Terraform scripts. You should probably start off with some examples already given by HashiCorp before you begin implementation. Once you've gone too deep, it's difficult to factor things in and out of it. Carefully read the documentation right from the get-go. Overall, on a scale from one to ten, I would give HashiCorp Vault a rating of eight.
One of the questions that I have been trying to solve is whether it is possible to update the cloud AWS keys from the on-premises solution. I have been through the documentation and the blogs and still do not know whether it is possible. Definitely, they can be managed once they have been deployed into the cloud, but I want to know the other way around. Our intention is ultimately to deploy on-premises, which is why this is important. My advice for anybody who is implementing this solution is to fully go through the documentation and understand all of the use cases before implementing it. I would rate this solution a seven out of ten.