We use the solution to secure and store managed sensitive information and cryptographic keys in an application secret.
Cloud Infrastructure consultant at a computer software company with 201-500 employees
A cloud solution to secure and store managed sensitive information
Pros and Cons
- "The solution uses the encryption technique to store the secret information data that uses EPCE. There is also one feature that monitors Azure Key Vault."
- "They should improve its policies, which sometimes reapplied but don't sync properly between the Key vault and the role-based access. When I put some roles on the user side, it sometimes misses the end data to secure."
What is our primary use case?
What is most valuable?
The solution uses the encryption technique to store the secret information data that uses EPCE. There is also one feature that monitors Azure Key Vault.
What needs improvement?
They should improve its policies, which sometimes reapplied but don't sync properly between the Key vault and the role-based access. When I put some roles on the user side, it sometimes misses the end data to secure.
One feature that could be added is the transparency of Key stored. There could be a feature to monitor the Key Vault because we can't monitor the Key Vault with a third party. We can't configure the automation or sync the key vault. We store passwords and all those things.
The user intervention also needs to be implemented there. This allows the user to automatically change the password, ensuring that it synchronizes and updates across all stored keys.
For how long have I used the solution?
I have been using Azure Key Vault for two years.
Buyer's Guide
Azure Key Vault
November 2024
Learn what your peers think about Azure Key Vault. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,660 professionals have used our research since 2012.
What do I think about the stability of the solution?
The product is stable.
What do I think about the scalability of the solution?
The solution is scalable. If they improve certain things with the update, that will be a more scalable product. There are a lot of users that use the Key Vault because it is the organization’s choice.
How was the initial setup?
The initial setup is super easy.
There is a key that says, 'MS bug is there.' Azure has keyword secret information and connectivity issues. Azure File Share has Key connectivity issues. If we share some files and link through the Key, it loses connection.
What's my experience with pricing, setup cost, and licensing?
The product is expensive compared to other products. It is costly to install as data records are charged based on the data. The Key type and plans are the factors that affect the pricing.
What other advice do I have?
We are implementing Azure Key for certain projects. It completely depends on the project. Suppose your company gives us a project and asks us to implement Azure Key for other users.
I don't recommend it to everyone. It completely depends on the scenario base if you use a VM application or shared data. You can use Key Vault to secure information when transferring over the network. Sometimes, you are trying to assess your web information, and it is not working because of the connectivity issue due to some access control policies.
If you are the user and can work on the Azure portal or have access, you may be the support or IT person. You have the right to choose the architecture we must implement in our organization. They want to implement that on their user, but that's not a suitable option for everyone. We have 2,000 employees using this solution. We should have a strong plan to implement the Key Vault.
Anyone can learn Azure Key Vault within a day or two days.
There's a lot of work to do on the standalone side. If we are required to create a different workflow or automate it, then it's not possible or difficult to do that. If I want to keep the alerts on my email or team channel, that isn't easy to automate with the help of the Sentinel.
I need to use Azure Key Vault to ensure my application sends me refined data weekly. This data includes high and low alerts, which are sent to my email address or possibly generate an incident using a third-party API such as ServiceNow or Jira.
We can automate several things. We can fetch the log, but we can't automate that defender workflow itself in Container.
The solution is best because it completely secures passwords, which we can use to access.
Overall, I rate the solution an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: customer/partner
Last updated: Mar 25, 2024
Flag as inappropriatePrincipal Cosultant at a tech vendor with 501-1,000 employees
Good features, advanced data protection, and reasonably priced
Pros and Cons
- "There is advanced data protection available. We're working in a highly regulated environment, and this is essential to us."
- "There are additional charges for data transfers. However, the pricing is mostly reasonable for the licensing overall."
What is our primary use case?
We are working with a lot of our clients who use the solution to protect sensitive information and to store it in the key vault within their infrastructure.
How has it helped my organization?
The sensitivity of the data needed to be kept in a secure environment so that only people who had proper access would be authorized to access it.
We are using infrastructure as code. So any of the services which require sensitive data can directly use service principles, manage identities, and access key items and then retrieve information from the Key Vault.
Since we are partners of Microsoft, we don't implement it for ourselves. We implement it for our clients. For our clients, many were using on-premises solutions and had connectivity from on-premises to the cloud. With this solution, they get the same level of data protection (or more) on the cloud.
What is most valuable?
The features on offer are very good.
We are using Key Vault as an optical store for the sensitive data and then retrieve the data and use access policies. So access to policies is quite valuable for us based on the regulations and compliance requirements that we are working with.
There is advanced data protection available. We're working in a highly regulated environment, and this is essential to us.
Perforamnce-wise, it's very good. We haven't had any issues in the past three years. There are no errors or downtime. It's always been available to us.
Microsoft's Key Vault availability is around 99%.
A lot of new features have been added, and it has nice regional availability as well.
It is stable and scales well.
Technical support has been fine overall.
What needs improvement?
It's currently very self-sufficient and doesn't need improvements. It's already a good service.
We haven't faced any problems with the solution as such. The only issue we are facing is around the comparability with TerraForm, which we use to code the infrastructure. Sometimes there are issues there, even though it's not directly related to Microsoft.
So far, it's served all of the client's purposes. We haven't come across a use case the solution could not handle.
There are additional charges for data transfers. However, the pricing is mostly reasonable for the licensing overall.
For how long have I used the solution?
I've used the solution for three or four years at this point. I've used it for a while.
What do I think about the stability of the solution?
The solution is quite stable. There are no bugs or glitches, and it doesn't crash.
What do I think about the scalability of the solution?
We have 60 different teams that deploy their own Key Vault. They are purely developers that make applications for users. Those users may be from anywhere and may use the application portals.
I'm not sure, behind the scenes, what Microsoft does. However, I've found it to be scalable across regions. If we wanted to use 100 Key Vaults, we could do so.
We do not have plans to increase usage at this time.
How are customer service and support?
Technical support is pretty good. I haven't had any issues with them over the past three years.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
The client has used other on-premises versions in the past. Many needed a cloud option, and we helped them move to Key Vault.
How was the initial setup?
The initial setup was straightforward. We do not deploy it as it is a SaaS. We simply configure it for clients. There are APIs available, and we use them within Key Vault to implement.
We require the business use case and strategy in order to implement the product. For example, if we are in energy or health care, we need to know what is the area that is sensitive and where they are being used. Then, once we have that, we can protect those items.
The only maintenance that is required is service access. For example, if we need to add authorized personnel, we would do that.
What about the implementation team?
We can handle the implementation for clients.
What's my experience with pricing, setup cost, and licensing?
The cost is quite cheap. There are no extra costs beyond the standard fees, beyond maybe data transfer charges. It's $0.025 per 10,000 data transactions, so it is quite cheap.
What other advice do I have?
We are a partner of Microsoft.
We haven't exported or imported information in Key Vault.
This solution is worth the cost and is useful to use.
It's a service that can be used in multiple regions in Azure. They are mostly deployed in UK South and UK West. It can be deployed and used in other regions as well; however, we have data constraints.
I'd rate her solution eight out of ten overall.
Potential new users should consider the types of sensitive information they want to store and how they want to retrieve the information, and from where. These are critical to understanding as they will govern the configuration of Key Vault.
You can deploy Key Vault both publicly and privately. For example, if you do it privately, you can ensure you will ensure it can only be accessed from within your environment, and that ensures a very high level of security.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Buyer's Guide
Azure Key Vault
November 2024
Learn what your peers think about Azure Key Vault. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,660 professionals have used our research since 2012.
Senior Manager at a computer software company with 10,001+ employees
Reasonably priced, stable, and easy to set up
Pros and Cons
- "The solution can scale up as needed."
- "The solution does not allow you to integrate with XML parties if it is not inside Azure itself."
What is our primary use case?
We were using the solution to store our keys that includes secrets, passwords, and also application properties.
What is most valuable?
The application properties and the ability to store our certificates too have been great aspects of the solution.
Mainly, having the application properties where all our applications' configurations were stored in the key vault was very useful.
The initial setup is pretty simple.
The stability is very good.
The solution can scale up as needed.
The solution offers very reasonable pricing.
What needs improvement?
I can't recall coming across any missing features or elements.
The solution does not allow you to integrate with XML parties if it is not inside Azure itself.
For how long have I used the solution?
I used the solution during my previous project that I handled last year. I used it for a full year, from January to December.
What do I think about the stability of the solution?
The solution is stable. I never had issues, for example, with stability, bugs or glitches, or crashing. It's reliable.
What do I think about the scalability of the solution?
The solution can scale. It is already a platform as a service, and therefore, it's already scaled up.
Our entire company is currently using the product.
How are customer service and support?
I did not use technical support when I worked with the product. Therefore, I cannot speak to how helpful or responsive they are.
Which solution did I use previously and why did I switch?
We did use HashiCorp Vault. We used to use it, and then we moved to Azure Key Vault due to the fact that it's a cloud platform as a solution and it is easy to implement.
How was the initial setup?
The initial setup was straightforward, however, we never used the console. We always used to use the Azure CLIs to set everything up.
What's my experience with pricing, setup cost, and licensing?
The pricing is very reasonable. It's not overly expensive.
What other advice do I have?
We're a Microsoft partner.
I cannot recall which version of the solution I used for the project I worked on.
Overall, it's a great product.
There's nothing I dislike about the solution. I would rate the solution at a ten out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Associate Vice President at Rishabh Software
Has excellent performance and helps to store secrets
Pros and Cons
- "Azure Key Vault's performance is excellent. It makes infrastructure management easier."
- "The solution needs to improve reliability and protection."
What is our primary use case?
We use the solution for a lending platform in the BFSI domain. It helps to store secrets.
What is most valuable?
Azure Key Vault's performance is excellent. It makes infrastructure management easier.
What needs improvement?
The solution needs to improve reliability and protection.
For how long have I used the solution?
I have been working with the product for three years.
What do I think about the stability of the solution?
Azure Key Vault is stable.
What do I think about the scalability of the solution?
The product is scalable.
How are customer service and support?
Microsoft's support is good.
How was the initial setup?
The tool's deployment is straightforward.
What's my experience with pricing, setup cost, and licensing?
Azure Key Vault is expensive.
What other advice do I have?
I rate Azure Key Vault an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Senior Software Engineer at a consultancy with 10,001+ employees
Secures DevOps processes and stores secrets
Pros and Cons
- "The integration with other Azure services is one of the standout features for me. It allows us to use secrets from the Azure Key Vault seamlessly without direct interaction.Additionally, the ability to easily mark secrets for expiration and receive notifications is invaluable."
- "One area for improvement is the notification system for secret expiration. It would be beneficial if the service could handle this more autonomously, eliminating the need for additional integrations."
What is our primary use case?
I primarily use the solution to secure our DevOps processes and store all the essential secrets for our project's services.
What is most valuable?
The integration with other Azure services is one of the standout features for me. It allows us to use secrets from the Azure Key Vault seamlessly without direct interaction.Additionally, the ability to easily mark secrets for expiration and receive notifications is invaluable.
What needs improvement?
One area for improvement is the notification system for secret expiration. It would be beneficial if the service could handle this more autonomously, eliminating the need for additional integrations.
For how long have I used the solution?
I have been using Azure Key Vault for about three years.
What do I think about the stability of the solution?
I rate the solution's stability a nine out of ten.
What do I think about the scalability of the solution?
I rate Azure Key Vault's scalability an eight out of ten. My company has more than 50 users. We use it daily.
How was the initial setup?
I rate the tool's deployment an eight out of ten. It takes less than a minute to complete. You need two resources to handle it; no maintenance is involved since it is a managed service.
What's my experience with pricing, setup cost, and licensing?
I rate the solution's pricing a four out of ten.
What other advice do I have?
I rate the tool an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head of IT Security Division at a financial services firm with 10,001+ employees
Stable product with a valuable integration feature
Pros and Cons
- "The product’s advantageous feature is integration."
- "It is complicated to use different services and products along with Azure Key Vault."
What is most valuable?
The product’s advantageous feature is integration.
What needs improvement?
It is complicated to use different services and products along with Azure Key Vault. There should be a single vault for virtual servers, containers, and other services. It could be universal with the possibility to use all types of technologies.
For how long have I used the solution?
We have been using Azure Key Vault for two years.
What do I think about the stability of the solution?
The product is stable as it is cloud-based.
How are customer service and support?
We have an enterprise agreement for support services. We encountered difficulties in communicating with the first-line support team.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We use other products in parallel, including ARIS, AWS, HashiCorp, etc.
What other advice do I have?
I rate Azure Key Vault an eight out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Manager at a consultancy with 10,001+ employees
An affordable and effective tool for securing databases
Pros and Cons
- "Its customer service is excellent."
- "They should add a key vault feature for the databases temporarily integrated into hybrid clouds."
What is our primary use case?
We use the solution to authenticate security features for environments. Using it, we can encrypt keys and protect the databases from getting hacked.
How has it helped my organization?
The solution works as an effective tool for securing our organization's databases.
What needs improvement?
They should add a key vault feature for the databases temporarily integrated into hybrid clouds. Also, they should make the key accessible once the databases migrate to another environment.
For how long have I used the solution?
We have been using the solution for seven years.
How are customer service and support?
The solution's customer service is excellent.
How would you rate customer service and support?
Positive
How was the initial setup?
The solution's initial setup process is moderately complex. It is a time-consuming process if you are new to the product. But, if you know source applications and target databases, it just takes a few hours. Whereas in the case of larger environments, it might take days to complete.
What about the implementation team?
Our in-house team deploys the solution. It requires three executives to work on larger deployments. Also, it requires a huge team when there are multiple databases to work with.
What's my experience with pricing, setup cost, and licensing?
The solution is affordable compared to other competitors.
What other advice do I have?
I advise others to use the solution if they already work with Microsoft Azure environment. In such cases, they should not prefer integration with a third-party tool. They should consider other products if the databases are distributed to on-cloud and on-premises infrastructures.
I rate the solution as an eight.
Disclosure: My company has a business relationship with this vendor other than being a customer: MSP
Product Owner at Software Technology
A cloud solution for storing API keys but could be cheaper
Pros and Cons
- "AI has been introduced to Azure."
- "The solution could be cheaper."
What is our primary use case?
We use the solution for API keys. We are migrating most of the data, including the application built in react native from the IBM server to Azure. AWS Key Vault stores secret keys and API keys.
How has it helped my organization?
Azure has its SLAs and Vault. We were never worried about the impact on security or any compliance with GDPR or others.
What is most valuable?
The product is very helpful. AI has been introduced to Azure. The services are being introduced thoroughly in Azure, especially in AI and IoT.
What needs improvement?
The solution could be cheaper.
For how long have I used the solution?
I have been using Azure Key Vault for a year. We started migrating 20-22 applications from IBM server to Azure.
What do I think about the stability of the solution?
The product is stable. A few others are dynamic in Azure. We might need an extension for those. So, we moved to the cloud.
What do I think about the scalability of the solution?
We've around three to four million users in one application.
How are customer service and support?
During the migration process, we utilized Microsoft support for Azure Key Vault. We encountered a couple of issues that the vendor couldn't resolve, so we had to turn to Microsoft support for assistance.
How was the initial setup?
The initial setup is easy. We have migrated around 20 applications in six months with the help of a vendor. There were a few architecture glitches otherwise it had a good impact on the deployment.
We have conducted this code assessment using the tool. Initially, we had two environments; development and production. We have set up multiple environments including development, and production. Additionally, we have initiated a force support assessment. We have commenced licensing for a few applications, utilizing both the relationship method and the refactor method. We have undertaken additional work on the porting part for a couple of applications. We are also focusing on automating this process as DevOps has been introduced.
What's my experience with pricing, setup cost, and licensing?
Azure Key Vault is more expensive than Amazon.
What other advice do I have?
I recommend the solution.
Overall, I rate the solution a seven out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Mar 11, 2024
Flag as inappropriateBuyer's Guide
Download our free Azure Key Vault Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Enterprise Password Managers Certificate Management Software Microsoft Security SuitePopular Comparisons
CyberArk Privileged Access Manager
AWS Secrets Manager
HashiCorp Vault
Delinea Secret Server
BeyondTrust Password Safe
LastPass
1Password
ManageEngine Password Manager Pro
Delinea Privileged Access Service
Bitwarden
Dashlane
One Identity Password Manager
Akeyless Secrets Management
Zoho Vault
Buyer's Guide
Download our free Azure Key Vault Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Which is better - Azure Key Vault or AWS Secrets Manager?
- What are some best practices to implement for secure employee password management?
- What advice do you have for an enterprise user on Password Day 2021?
- When evaluating Enterprise Password Managers, what aspect do you think is the most important to look for?
- What should one take into account when selecting an enterprise password manager?