Excellent choice for you business Secrets Management Solution
June 17, 2024

Excellent choice for you business Secrets Management Solution

Fabricio Zubelli | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Overall Satisfaction with HashiCorp Vault

We leverage HashiCorp Vault capabilities for storing and managing our secrets and company passwords. HashiCorp Vault integrates with applications and tools to enable transparent secure sensitive information retrieval programmatically. By leveraging HashiCorp Vault we can go with IAC/CAC on almost everything we build. HashiCorp Vault also makes it easy to share secrets between team members and the organization.

Pros

  • Store secrets
  • Store configurations
  • Integrate with kubernetes
  • Audit log of changes
  • Team secret sharing
  • Real time in transit encryption

Cons

  • Session Management is terrible to manage
  • Monitoring is hard and not enough information
  • User management
  • Configuration is too complex
  • More user friendly UI
  • Vault enabled IAC for kubernetes applications
  • Central configuration for applications
  • Version Control on secrets
  • Improved the company security and secret sharing experience
  • Enabled the PCI compliance for the company
HashiCorp Vault integrates with a lot of tools and systems, and the documentation was pretty robust with a lot of community help. Because HashiCorp Vault is also older than other solutions, it is already well developed with a lot of features you need for storing secrets and configuration. HashiCorp Vault is also friendlier towards application build and is focused in providing security and a lot of customization for almost any use case scenario.
Bitwarden is more limited to password management of enterprise accounts, but for application usage is not that great or easy to integrate. It does not scale well also. AWS Secrets Manager on the other hand is really good but more limited to AWS applications and vendor lock is problematic as well for such a critical piece of infrastructure.

Do you think HashiCorp Vault delivers good value for the price?

Yes

Are you happy with HashiCorp Vault's feature set?

Yes

Did HashiCorp Vault live up to sales and marketing promises?

Yes

Did implementation of HashiCorp Vault go as expected?

Yes

Would you buy HashiCorp Vault again?

Yes

When you need to store secure information (secrets or configuration) for your kubernetes applications or just general secrets in a central place where team members can access. HashiCorp Vault enables granular access control and has terraform which makes it easy to manage it using IAC. It integrates really well in any cloud-native environment you are building your application.
I would not use it for small POC or companies due to the overhead of management and setup requirements. You could use another approach such as encrypted k8s secrets in git directly.

Comments

More Reviews of HashiCorp Vault

  1. Home
  2. Encryption Key Management Software
  3. HashiCorp Vault Reviews
  4. User Review of HashiCorp Vault