HashiCorp Vault Reviews

Name: HashiCorp Vault
Brand: HashiCorp
Rating: 4.1 (18 reviews)

4.1 out of 5

18 reviews
89% willing to recommend

What is HashiCorp Vault?

HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management.

Get the HashiCorp Vault Buyer's Guide and find out what your peers are saying about HashiCorp Vault, CyberArk Privileged Access Manager, Azure Key Vault and more!

HashiCorp Vault is the #4 ranked solution in top Enterprise Password Managers. PeerSpot users give HashiCorp Vault an average rating of 8.2 out of 10. HashiCorp Vault is most commonly compared to CyberArk Privileged Access Manager: HashiCorp Vault vs CyberArk Privileged Access Manager. HashiCorp Vault is popular among the large enterprise segment, accounting for 65% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 20% of all views.

Helped 862,514 peers since 2012

Featured HashiCorp Vault reviews

Anand-Awasthi

Cloud Solutions Architect at IBM

The best features in HashiCorp Vault are its dynamic certificate management and dynamic secret management, which are the key features that use data effectively. These are very targeted use cases that cut across multiple solutions. I have utilized Vault's encryption capabilities for securing data in transit and at rest, especially for dynamically consuming database encryption, which covers the requirements of various scenarios where databases do not have encryption capability. HashiCorp Vault provides security by rotating the keys and taking all the burden of securing the data from the database. These are key core features that many users employ in this solution. Vault's audit logs provide insights into access patterns and help ensure compliance. These facilities are configurable, and the logs are encrypted, ensuring that anything recorded in the logs is secure. We could use systems that comply with specific standards for audit logging and scanning, especially when working with them. The benefits from HashiCorp Vault include significant advantages in security lifecycle management itself. The value becomes apparent when security incidents occur. It has substantial value in proactively protecting from adverse situations, providing resilience and appreciation by customers in complete security lifecycle management solutions for core infrastructure applications.

Read full review

AKASHGUPTA3

Credit Analyst at Standard Chartered Bank

I would advise doing a Proof of Concept first and then deciding accordingly because your use case might be simple. You can try out AWS Key Management or Azure Key Vault. They are different products. Do the POC and then decide what you need. Overall, I would rate the solution a six out of ten. No solution is a ten in my opinion.

Read full review

KishoreKumar1

Architect at Accenture

The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets. The access management feature in HashiCorp is great, especially if you are considering situations where users are getting onboarded. They can manage their passwords themselves, and it integrates well with Active Directory or any other directory services. This is particularly useful for user management and applications that communicate with each other without human intervention.

Read full review

HashiCorp Vault mindshare

As of July 2025, the mindshare of HashiCorp Vault in the Enterprise Password Managers category stands at 11.6%, down from 13.8% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Enterprise Password Managers

PeerResearch reports based on HashiCorp Vault reviews

Type	Title	Date
Category	Enterprise Password Managers	Jul 20, 2025	Download
Product	Reviews, tips, and advice from real users	Jul 20, 2025	Download
Comparison	HashiCorp Vault vs Azure Key Vault	Jul 20, 2025	Download
Comparison	HashiCorp Vault vs CyberArk Privileged Access Manager	Jul 20, 2025	Download
Comparison	HashiCorp Vault vs AWS Secrets Manager	Jul 20, 2025	Download

Title	Rating	Mindshare	Recommending
CyberArk Privileged Access Manager	4.3	8.0%	94%	224 interviews Add to research
Azure Key Vault	4.3	19.1%	98%	50 interviews Add to research

Valuable Features

HashiCorp Vault excels with its dynamic secrets, seamless integration with HashiCorp tools and Kubernetes, strong encryption capabilities, and open-source nature. Users appreciate its cloud agnosticism, API feature, secret engine, and robust access management. Version control, dynamic certificate management, and secure audit logs enhance its security and usability. Its ability to rotate keys, manage encryption in transit and at rest, and facilitate lifecycle management offers substantial value to users. Integration with CI/CD pipelines and Active Directory streamlines operations.

"The benefits from HashiCorp Vault include significant advantages in security lifecycle management itself."
"The most valuable feature of HashiCorp Vault is version control."
"The most valuable feature of HashiCorp Vault is version control."

Room for Improvement

HashiCorp Vault users suggest improvements in areas such as integration with cloud services like Azure and AWS, simplified setup processes, and expansion of automation features. They express concerns over inadequate documentation, high pricing, and lack of user-friendly interfaces compared to alternatives like CyberArk. There are calls for enhancements in error handling, technical support, onboarding processes, and advanced features like database plugins and automatic initialization options to improve user experience and functionality.

"HashiCorp Vault can be improved from the security perspective, as it focuses on security lifecycle management. It requires other solutions for monitoring as users need to rely on tools that constantly monitor the system, especially database activity."
"An improvement needed is the ability for auto-initialization. There should be an inbuilt option for automatic initialization rather than running it manually."
"An improvement needed is the ability for auto-initialization."

Pricing

HashiCorp Vault users often start with the community edition, incurring minimal initial costs. Transitioning to the enterprise version involves higher expenses, influenced by specific requirements like scalability and support. The enterprise solution may become pricey, with potential costs exceeding a quarter million annually for extensive features. Some users find AWS Secret Management cheaper than Vault. Pricing is perceived as competitive with features contributing to cost-effectiveness, but complexity and lack of transparency in client definitions add to challenges in pricing clarity.

"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."
"The product is expensive."
"The solution's cost is reasonable."

Popular Use Cases

Organizations primarily use HashiCorp Vault for secrets management, including storing keys, passwords, and certificates. It supports diverse platforms and offers centralized secret storage and encryption. Many conduct proofs of concept and prefer Vault for its cloud-agnostic feature, RESTful API support, and secure integration with tools for continuous integration and machine-to-machine communication. It facilitates dynamic credentials and secret lifecycle management, catering to specific security and compliance needs in hybrid environments.

Service and Support

Many users rely on open-source HashiCorp Vault without needing support, finding documentation sufficient. Others find technical support good, but feedback suggests delays when seeking help. Users utilizing enterprise support experience responsive service and proactive assistance, especially during integration setups, appreciating the immediate answers and effort put into customer relations. Some still prefer troubleshooting independently due to longer response times compared to other companies. Overall, HashiCorp Vault support presence varies depending on user needs and plans.

Deployment

Users highlight a mix of ease and complexity with HashiCorp Vault's initial setup. Some find it straightforward, completing installation within minutes, often aided by documentation or prior experience. Others encounter challenges, especially with cloud integration and error tracking. While automation and enterprise support can simplify tasks, the process sometimes involves manual steps and security team involvement. Onboarding is noted as a hurdle, and some users suggest a more self-service approach.

Scalability

HashiCorp Vault is frequently described as highly scalable and stable. Users often mention its capacity to handle increased demand, utilizing infrastructures like Kubernetes to enhance scalability further. Many organizations report a user base in the hundreds, indicating it operates effectively within large environments. User feedback often highlights experiences of managing clusters or integration with systems like Consul, showcasing adaptability and critical importance in continuous operations.

Stability

HashiCorp Vault is generally stable according to users. Many emphasize its consistent performance, with remarks about backend Consul's high availability. While occasional issues with Terraform are noted, it's often stable without significant setbacks. Stability ratings vary from six to nine out of ten, with some users noting network latency or scaling challenges. Despite some glitches, users appreciate its stability for intensive workloads, especially in systems requiring machine-to-machine communication, highlighting its capability to add nodes when demands increase.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our HashiCorp Vault Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

20%

Computer Software Company

14%

Manufacturing Company

Government

Insurance Company

Comms Service Provider

Healthcare Company

Retailer

University

Media Company

Educational Organization

Real Estate/Law Firm

Construction Company

Wholesaler/Distributor

Non Profit

Energy/Utilities Company

Recreational Facilities/Services Company

Performing Arts

Legal Firm

Hospitality Company

Outsourcing Company

Logistics Company

Pharma/Biotech Company

Consumer Goods Company

Transportation Company

Aerospace/Defense Firm

Security Firm

Compare HashiCorp Vault with alternative products

Learn more about HashiCorp Vault

The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

HashiCorp Vault Features

Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.
Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.
Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.
Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

Reviews from Real Users

“The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

“The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.