Please share with the community what you think needs improvement with HashiCorp Vault.
What are its weaknesses? What would you like to see changed in a future version?
We could use more documentation, primarily to do with integrations. Anybody who uses HashiCorp integrates with a public cloud, like Azure or AWS. Azure and AWS have their own secret management; how does this collaboration work between the key vault of HashiCorp to the key vault of Azure? Some of this documentation is not up to mark.
The documentation is very general; it should have more examples and more use cases. Basically, they just tell you the syntax without a better explanation of how to do things. We learned all of the Vault Commands (CLI) and they work fine, except when we are running on an EKS cluster then the syntax changes. Most of the commands are not working.
A Service Mesh workflow connected within Vault workflow would be difficult to integrate, depending on the SI complexity and security compliance. A drawback for some clients who have to be PCI compliant is that they still need to use and subscribe to an HSM (Hardware Security Module) solution. Compliance: www.pcicomplianceguide.org