HashiCorp offers Vault, an encryption tool of use in the management of secrets including credentials, passwords and other secrets, providing access control, audit trail, and support for multiple authentication methods. It is available open source, or under an enterprise license.
$0.03
Azure Key Vault
Score 10.0 out of 10
N/A
Microsoft's Azure Key Vault allows users to safeguard cryptographic keys and other secrets used by cloud apps and services. Azure Key Vault can be used to encrypt keys and small secrets like passwords that use keys stored in hardware security modules (HSMs).
Vault is a reliable and resilient as the Key Management System. It is not for the novice user that does not have a background in information security. It requires a significant time investment into the different key engines that the solution offers to get started. It works very well once implemented and is very flexible in general.
You can back up many local keys in Microsoft Azure Key Vault, easy to set up permission. It helps your information protection task. Integration with local systems is also possible with some solutions. If you are using old systems, you may not get the full benefit of Microsoft Azure Key Vault. But I recommend to try it.
HashiCorp Vault is the best there is out there, and it has become critical to our secret management use cases. It would be difficult to find anything that would suit our needs better and that would be beneficial for us to switch over to.
We spent a little more time than we imagined to conceptually understand how HashiCorp Vault operates, as well as how it is configured. This is not trivial, and keep in mind that you will need to take some time to get a thorough understanding of the tool. The documentation could be more helpful in this regard.
It is easy to use. The cost of this service is quite low, so don't worry about it. It is very easy to use because you can store keys in a variety of ways. It would be very nice to have the ability to automatically remind the person in charge of the key expiration date.
Hashicorp has been very responsive to our questions and inquiries up to this point. We are currently working on them to develop a more granular permissions model within Vault. We are very close to achieving our objectives with the help of their support team. We do not seem to be in the same time zone which makes it hard for escalated issues.
How to use Microsoft Azure Key Vault is available in Micrsoft tech net or various internet tech sites. If you have a question, you can use support from pages in Azure. Onece you request, you will get call or e-mail from Microsoft. Public information referrals and service bugs will be handled free of charge
HashiCorp Vault integrates with a lot of tools and systems, and the documentation was pretty robust with a lot of community help. Because HashiCorp Vault is also older than other solutions, it is already well developed with a lot of features you need for storing secrets and configuration. HashiCorp Vault is also friendlier towards application build and is focused in providing security and a lot of customization for almost any use case scenario. Bitwarden is more limited to password management of enterprise accounts, but for application usage is not that great or easy to integrate. It does not scale well also. AWS Secrets Manager on the other hand is really good but more limited to AWS applications and vendor lock is problematic as well for such a critical piece of infrastructure.
