Try our new research platform with insights from 80,000+ expert users

BeyondTrust Password Safe vs HashiCorp Vault comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 16, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BeyondTrust Password Safe
Ranking in Enterprise Password Managers
7th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
26
Ranking in other categories
Privileged Access Management (PAM) (9th)
HashiCorp Vault
Ranking in Enterprise Password Managers
4th
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
18
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Enterprise Password Managers category, the mindshare of BeyondTrust Password Safe is 3.5%, up from 3.0% compared to the previous year. The mindshare of HashiCorp Vault is 11.6%, down from 13.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Enterprise Password Managers
 

Featured Reviews

Ali Hatamleh - PeerSpot reviewer
Smart tooling streamlines account organization and access through advanced grouping features
The features I find valuable in Password Safe include password retention and management, session privilege monitoring, live monitoring and recording, and the use of PS automation scripts for creating connections. The smart tooling and smart group features are also important as, after finalizing discovery, they auto-collect accounts in the environment and organize them in Smart Groups for easy access.
Anand-Awasthi - PeerSpot reviewer
Offers dynamic secrets and certificate management for proactive security measures
The best features in HashiCorp Vault are its dynamic certificate management and dynamic secret management, which are the key features that use data effectively. These are very targeted use cases that cut across multiple solutions. I have utilized Vault's encryption capabilities for securing data in transit and at rest, especially for dynamically consuming database encryption, which covers the requirements of various scenarios where databases do not have encryption capability. HashiCorp Vault provides security by rotating the keys and taking all the burden of securing the data from the database. These are key core features that many users employ in this solution. Vault's audit logs provide insights into access patterns and help ensure compliance. These facilities are configurable, and the logs are encrypted, ensuring that anything recorded in the logs is secure. We could use systems that comply with specific standards for audit logging and scanning, especially when working with them. The benefits from HashiCorp Vault include significant advantages in security lifecycle management itself. The value becomes apparent when security incidents occur. It has substantial value in proactively protecting from adverse situations, providing resilience and appreciation by customers in complete security lifecycle management solutions for core infrastructure applications.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I rate BeyondTrust Password Safe as an overall 10 out of 10."
"The solution protects organizations from internal and external threats."
"I find that BeyondTrust Password Safe is a very effective application for password management."
"The performance is good."
"The time-saving benefits come from no longer having to remember multiple device passwords."
"One of the most valuable features is that this is a product designed with enterprises in mind."
"Overall, I rate BeyondTrust Password Safe as nine out of ten."
"Session recording, password rotation, and password vaulting are the most valuable features."
"It's stable. I would rate the stability a nine out of ten."
"The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp."
"For me, the most valuable features include that it's easy to manage and maintain the password API for retrieving passwords and other things."
"The benefits from HashiCorp Vault include significant advantages in security lifecycle management itself."
"The interface is very simple to navigate."
"It is an added value for our customers to have a Secrets Management workflow available that is PaaS/CaaS/KaaS Platform agnostic."
"The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets."
"The solution is stable. It has been working perfectly without any problem."
 

Cons

"Its documentation can be improved. Its documentation is currently complicated, and it is not good. It needs to be better. Their technical support can also be improved. It is not bad, but it can be better."
"I think that BeyondTrust Password Safe could be improved with more testing. In the beginning, they were practically using customers as beta testers. Maybe the product has evolved since I last used it, but if you look at PAM, privileged access management, whatever's out there has already been done. I don't see there being any other enhancements that are being made regarding PAM, except to support more cloud-based applications."
"From the client perspective, they usually complain that the RDP session disconnects without error notifications."
"The product needs to have better integration with SAP products."
"The only improvement I could suggest would be standardizing documentation, but that's more the responsibility of the implementing engineer rather than BeyondTrust Password Trust itself. The documentation must be specific and narrow for implementation, not just broad guidelines."
"The database instance onboarding should be simplified. The problem is that you can scan the assets and databases inside a server, but you cannot onboard them or manage them with the smart tools. It has to be done manually. I think they should try to include more custom platforms."
"If they can create a single platform to create a connector, it would be better than using the RBS server."
"The only feature they could improve is the banners because they aren't informative. For example, if something is not correct and I open the error notification, the dialogue box simply says, "This is an error." It would be great if they could provide some valuable comments about how to fix the errors."
"The documentation is very general; it should have more examples and more use cases."
"The onboarding is a challenge. It should be more self-service, but it involves reviews and approvals."
"The solution's initial setup process is complicated."
"The technical support was hard to get a hold of and lacking in service."
"We could use more documentation, primarily to do with integrations."
"There could be a plugin for the database to change the secret automatically. It would be an efficient feature for password security."
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."
"It would be helpful to have more advanced features."
 

Pricing and Cost Advice

"The product is quite affordable."
"When you buy Password Safe and perform your initial Discovery, you have all these servers that are added to your assets in BeyondTrust, but you're not using a license until you actually start managing the systems. BeyondTrust's licensing is based on the systems when they're managed, which means when an administrator is able to connect to the server through BeyondTrust with a managed account. There would be a privileged account on the endpoint when the licensing starts. A significant advantage to that is that there are many organizations that want to evaluate their environment prior to automatic management."
"At the time, BeyondTrust was significantly cheaper than CyberArk. Pricing-wise, if I remember correctly, it goes by assets. The pricing was negotiated for our instances based on the number of assets that we onboard into the system. It is a little different from CyberArk, where the pricing is by users. So, it depends. If you have a lot of assets, it can get very expensive."
"The pricing structure is better than the competitors. It's much cheaper than CyberArk. They do the licensing on the basis of assets, not on the number of users. For CyberArk, they base the licensing on the number of users, and they have an expensive model of pricing. BeyondTrust has a cheaper model."
"It has subscription-based licensing. BeyondTrust is three times less expensive than CyberArk."
"I would rate the pricing a seven out of ten, where one is cheap and ten is expensive."
"This solution is not cheap—it's a very expensive solution. Very, very expensive compared to the features and functions that they offer."
"The pricing of BeyondTrust is very good as compared to other products. That was the main reason we decided to go with BeyondTrust at first."
"The product is expensive."
"It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
"The solution's cost is reasonable."
"I am using the open-source version of Vault and I would have to buy a license if I want to get support."
"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."
"The AWS version is much cheaper than HashiCorp Vault."
report
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
860,632 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
15%
Manufacturing Company
9%
Government
8%
Financial Services Firm
20%
Computer Software Company
14%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for BeyondTrust Password Safe?
My experience with BeyondTrust Password Safe's pricing, setup cost, and licensing has been positive, primarily due to its asset-based licensing model. This is a significant advantage for us because...
What needs improvement with BeyondTrust Password Safe?
While generally a strong product, BeyondTrust Password Safe has a few areas that could use some polish. From an administrator's viewpoint, we sometimes see keystroke capturing fail. More significan...
What is your primary use case for BeyondTrust Password Safe?
The main purpose of BeyondTrust Password Safe is for Privileged Access Management, with session monitoring being very effective for risk mitigation. It ensures we adhere to the control standards se...
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
What do you like most about HashiCorp Vault?
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...
What is your experience regarding pricing and costs for HashiCorp Vault?
If I were to set it up in AWS Secret Management, I would have to manage it, pay, and create secrets without being cloud agnostic. The advantage with Vault is that it is cloud agnostic. I can deploy...
 

Also Known As

BeyondTrust PowerBroker Password Safe
No data available
 

Overview

 

Sample Customers

Aera Energy LLC, Care New England, James Madison University
Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
Find out what your peers are saying about BeyondTrust Password Safe vs. HashiCorp Vault and other solutions. Updated: June 2025.
860,632 professionals have used our research since 2012.