Try our new research platform with insights from 80,000+ expert users

AWS Secrets Manager vs Azure Key Vault comparison

Amazon Web Services (AWS) and Microsoft are both solutions in the Enterprise Password Managers category. Amazon Web Services (AWS) is ranked #2 with an average rating of 8.7, while Microsoft is ranked #1 with an average rating of 8.7. Amazon Web Services (AWS) holds a 23.8% mindshare in EPM, compared to Microsoft’s 27.1% mindshare. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 97% of Microsoft users who would recommend it.
AWS Secrets Manager
Read 13 AWS Secrets Manager reviews
  • 12,354 Views
  • 11,057 Comparison Views
100% willing to recommend
Azure Key Vault
Read 45 Azure Key Vault reviews
  • 19,757 Views
  • 14,001 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 22, 2024

AWS Secrets Manager and Azure Key Vault are products competing in secure management and storage of sensitive information, with AWS having an advantage in scalability and integration, while Azure leads in cost-effectiveness and security features.

Features: AWS Secrets Manager provides seamless integration with AWS services, automatic rotation of secrets, and fine-grained access control. Azure Key Vault offers strong encryption capabilities, easy integration with Microsoft Azure services, and comprehensive access management.

Room for Improvement: AWS Secrets Manager could benefit from enhanced security features, better cost management, and support for more non-AWS services. Azure Key Vault might improve with increased scalability options, better cross-platform integration, and more comprehensive monitoring tools.

Ease of Deployment and Customer Service: AWS Secrets Manager enables streamlined deployment through AWS ecosystem integration and robust support. Azure Key Vault provides straightforward deployment within Microsoft Azure, supported by extensive Microsoft resources.

Pricing and ROI: AWS Secrets Manager incurs higher usage costs with its integrated features but can deliver high ROI in AWS environments. Azure Key Vault is more budget-friendly with transparent pricing enhancing ROI, focusing on cost-effective solutions.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Secrets Manager vs. Azure Key Vault Report (Updated: December 2024).
Buyer's Guide
AWS Secrets Manager vs. Azure Key Vault
December 2024
Download the complete report
Helped 824,154 peers since 2012
 

Categories and Ranking

AWS Secrets Manager
Ranking in Enterprise Password Managers
2nd
Average Rating
8.8
Reviews Sentiment
7.5
Number of Reviews
13
Ranking in other categories
No ranking in other categories
Azure Key Vault
Ranking in Enterprise Password Managers
1st
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
45
Ranking in other categories
Certificate Management Software (1st), Microsoft Security Suite (14th)
 

Mindshare comparison

As of January 2025, in the Enterprise Password Managers category, the mindshare of AWS Secrets Manager is 23.8%, up from 23.9% compared to the previous year. The mindshare of Azure Key Vault is 27.1%, down from 29.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Enterprise Password Managers
 

Q&A Highlights

NC
Nov 24, 2021
Which is better - Azure Key Vault or AWS Secrets Manager?
Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governance regulations. We like that with this solution you can retrieve your user account details from the cloud. Azure Key Vault is easily scalable. We found it easy to use and the GUI is very good too. Azure Key Vault would be more attractive if it would expand endpoints. The addition of mobile devices would be great. It would also be advantageous if Azure Key Vault had better integrations and offerings for companies of all sizes. AWS Secrets Manager is quick to deploy and does a great job. The UI is easy to use and provides a good group of APIs that works well with Java, Python, etc. With AWS Secrets Manager you can rotate secrets safely without code deployments. The solution offers pay-as-you-go pricing. You can easily replicate secrets in multiple AWS regions to support your applications and disaster recovery scenarios. You need to have advanced enterprise support to get the quality assistance you need to handle issues. We would like to see AWS Secrets Manager with more customizable options; currently, it can be very cumbersome. If you are not in the AWS ecosystem, AWS Secrets Manager may not be a good fit for you. Conclusion: AWS Secrets Manager offers flexible pay-as-you-go pricing, but as a whole is a somewhat clunky solution. It is most effective in the AWS ecosystem. Azure Key Vault is very well thought-out and easy to use. We found it to be extremely secure. We like that it is Microsoft-backed and feel that it offers the best processes for encryption and ciphering of keys. As we are heavily committed to the Microsoft ecosystem, Azure Key Vault is a great fit for our organization.
See all answers
 

Featured Reviews

ManuelTorres - PeerSpot reviewer
Simplifies and secures secret management within the AWS ecosystem, though it could enhance integration capabilities with external platforms
AWS Secrets Manager has streamlined our processes for managing secrets and their lifecycle. We typically handle everything through automation, following a predefined approach. When we undertake our developments, we seamlessly integrate the process into our workflows. Essentially, our secrets require minimal intervention; they are automatically managed by the system itself. This ensures smooth operations without the need for manual intervention. We integrate this tool with various AWS services, utilizing AWS Secrets Manager specifically for AWS resources. Any application, service, or deployment within AWS leverages Secrets Manager whenever it requires access to it.
Read full review
Mayur B N - PeerSpot reviewer
Offers good integration capabilities to its users
I use the tool to manage encryption keys and secrets in our application. In our company's production environment, we have some secrets and certificates that need to be accessed by the Kubernetes cluster, which is why we store those secrets in Azure Key Vault. In Kubernetes, we have a SecretProviderClass, which helps us access those keys from Azure Key Vault and then give them to our applications. Speaking about how Azure Key Vault plays a crucial role in our company's security strategy, in Kubernetes, you have to define environment variables for the application. In my company, we have around 60 to 70 environment variables, and most of them are sensitive. In Kubernetes, you define YAML files, and you can't directly use any values in YAML files and commit them to the GitHub commit because you will basically see the text values in YAML files. Instead, we store it in Azure Key Vault and then access those keys and values as variables for our company's applications. In terms of the benefits of cryptographic key management features, I would say that my company has used only the secret option in the tool, so we haven't checked out the keys and certificates. In my company, we just store key-value pairs for variables in Azure Key Vault. The product's integration capabilities are good. The tool has a pretty good firewall, which allows my company to access only private networks and certain IP addresses. Everything else is good with the product. My company doesn't use the policies in the product since we rely on roles and role assignments. One person is enough to take care of the maintenance of the solution. The product helps my company comply with the industry regulations since I believe that Azure Key Vault has its own set of SLAs and compliances, which we have gone through. I think Azure has some default compliance for each and every resource, which would be enough considering that I work in a very small organization where we didn't think of going into the details related to it. Azure is a very good platform, but it is a bit expensive. I think the price is justified because of the reduced complexity and the way it handles things, considering that Azure manages certain things better than its competitors. The tool is a bit expensive, but the management and configurations would be less expensive from the user's side. I rate the tool a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is security."
"Secrets Manager helps in retrieving the enrollment variables used by the code."
"The API is fine and works well."
"The product is easy to use and is inexpensive."
"AWS Secrets Manager is used for storing secret information that has to be a secret from your customer and your employees."
"The solution is very scalable."
"The most valuable feature is usability, as it is quite user-friendly."
"All our workloads are running on AWS, so integration with our workload is much easier on AWS Secrets Manager than going with another solution such as Thycotic."
More AWS Secrets Manager pros
"The centralized storage and secure storage are features we like."
"We use Azure Key Vault for securing secret connection streams, like API secrets, Azure services Secret Key, and AD Client Secret."
"I would say it's granular controller who can access them."
"It provides a secure and centralized location for managing and protecting sensitive information, making it an essential component for enhancing the security."
"The most valuable feature is that you can retrieve user account details from the cloud."
"The most valuable feature is the ability to store secrets securely and encrypt them. It is pretty easy and straightforward to use."
"The integration with other Azure services is one of the standout features for me. It allows us to use secrets from the Azure Key Vault seamlessly without direct interaction.Additionally, the ability to easily mark secrets for expiration and receive notifications is invaluable."
"All its features are really valuable. It's really well thought-out. It's a complete turnkey solution that has all the concerns taken care of, such as access control and management. You can use it in infrastructure as code to create key vaults, APIs, PowerShells, CLIs, even Terraform."
More Azure Key Vault pros
 

Cons

"The solution's initial setup process is complicated."
"There is a potential improvement in connecting AWS Secrets Manager to Jenkins CI/CD pipeline to automatically reflect changes in production."
"The sidecar feature has room for improvement."
"The price of the solution could improve."
"If you add one more layer of security to AWS Secrets Manager, even the programmer will not be able to see the secrets."
"There is room for improvement in terms of integrating with certain other platforms."
"It would be good if the AWS Secrets Manager were more customizable."
"An area for improvement in AWS Secrets Manager could be expanding integration options beyond AWS services."
More AWS Secrets Manager cons
"Users should be able to segregate the passwords."
"The solution does not allow you to integrate with XML parties if it is not inside Azure itself."
"It is complicated to use different services and products along with Azure Key Vault."
"While it is reliable, enhancing security and protection should always be the priority."
"While the solution already does a great job of managing keys, the solution could probably look at maybe expanding more into mobile devices and endpoints."
"The platform's configuration process could be easier."
"The solution's usage can be a little better from the user interface point of view."
"I would like more code examples."
More Azure Key Vault cons
 

Pricing and Cost Advice

"I don't believe there is a license cost for the solution."
"We purchase a monthly license for the product."
"We've observed that AWS Secrets Manager pricing is based on a per-secret-per-month model. As a result, we prefer to divide our secrets into individual pieces to increase security and grant specific access permissions to certain secrets, systems, or individuals. However, this approach results in higher costs. Therefore, we have been exploring ways to combine our secrets into groups to reduce expenses and simplify management. Nonetheless, we acknowledge that this issue may not be related to the secret manager's functionality."
"The solution is expensive."
"The cost is somewhat high."
"Azure is cheaper than CyberArk... CyberArk is good, but it's quite expensive."
"I find the pricing of Azure Key Vault to be reasonable."
"It is less expensive compared to other competitors."
"The product costs much less compared to other vendors."
"The cost of the Azure Key Vault is very high and the pricing model is based on the number of keys that you store and retrieve."
"Azure Key Vault is an affordable solution."
"The price of the product is okay for my company."
"We use a pay-as-you-go license for the solution, which is not very expensive."
More Azure Key Vault pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
See recommendations
824,154 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
14%
Manufacturing Company
8%
Insurance Company
6%
Computer Software Company
15%
Financial Services Firm
13%
Manufacturing Company
9%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Key Vault or AWS Secrets Manager?
Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governanc...
See all answers
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
See all answers
What do you like most about AWS Secrets Manager?
The most valuable feature of AWS Secrets Manager is its seamless integration with various AWS services.
See all answers
What do you like most about Microsoft Azure Key Vault?
With Azure Key Vault, we can generate our own keys and then import them inside the system, which provides a higher level of security than provider-managed keys.
See all answers
What is your experience regarding pricing and costs for Microsoft Azure Key Vault?
Azure Key Vault is a very, very expensive solution. Currently, the solution's pricing is based on the number of transactions, which is very high in some cases.
See all answers
What needs improvement with Microsoft Azure Key Vault?
Azure Key Vault has a lot of glitches. The solution's trial version should provide some more facilities so that people can try them and then decide whether to implement the tool in their project.
See all answers
 

Comparisons

HashiCorp Vault vs AWS Secrets Manager Logo
HashiCorp Vault vs AWS Secrets Manager
Compared 17% of the time
1Password vs AWS Secrets Manager Logo
1Password vs AWS Secrets Manager
Compared 5% of the time
Delinea Secret Server vs AWS Secrets Manager Logo
Delinea Secret Server vs AWS Secrets Manager
Compared 3% of the time
CyberArk Privileged Access Manager vs AWS Secrets Manager Logo
CyberArk Privileged Access Manager vs AWS Secrets Manager
Compared 2% of the time
Bitwarden vs AWS Secrets Manager Logo
Bitwarden vs AWS Secrets Manager
Compared 1% of the time
More AWS Secrets Manager Competitors
HashiCorp Vault vs Azure Key Vault Logo
HashiCorp Vault vs Azure Key Vault
Compared 11% of the time
AWS Certificate Manager vs Azure Key Vault Logo
AWS Certificate Manager vs Azure Key Vault
Compared 5% of the time
1Password vs Azure Key Vault Logo
1Password vs Azure Key Vault
Compared 4% of the time
Delinea Secret Server vs Azure Key Vault Logo
Delinea Secret Server vs Azure Key Vault
Compared 4% of the time
CyberArk Privileged Access Manager vs Azure Key Vault Logo
CyberArk Privileged Access Manager vs Azure Key Vault
Compared 3% of the time
More Azure Key Vault Competitors
 

Product Reports

Buyer's Guide
Enterprise Password Managers
December 2024
AWS Secrets Manager reportDownload AWS Secrets Manager product report
Buyer's Guide
Azure Key Vault
December 2024
Azure Key Vault reportDownload Azure Key Vault product report
 

Also Known As

No data available
Microsoft Azure Key Vault, MS Azure Key Vault
 

Learn More

Amazon Web Services (AWS)
Microsoft
 

Overview

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

Microsoft Azure Key Vault is a cloud-based data security and storage service that allows users to keep their secrets safe from bad actors.

Benefits of Microsoft Azure Key Vault

Some of the benefits of using Microsoft Azure Key Vault include:

  • Secure your secrets in a single central location, enabling you to control how your information is disseminated.
  • Keep your data away from bad actors. Application administrators can store their application’s security information away from the actual application. Microsoft Azure Key Vault reduces the chance that a bad actor will be able to leak an application’s secrets. Because the data is not stored in the code of the application, hackers will be unable to steal the security information.
  • Retrieve your information securely. When the information is needed, the application can securely retrieve it by using a uniform resource identifier (URI) to connect to Microsoft Azure Key Vault.
  • Securely store your digital keys and secrets. Microsoft Azure Key Vault stores data behind layers of security protocol. No one can access the information stored in a Microsoft Azure Key Vault without first obtaining the necessary authentication and authorization. The authentication process allows the system to figure out who is trying to access the vault in question. This process is performed by Azure’s Active Directory. After the person or entity is authenticated, Microsoft Azure Key Vault then assigns them a level of authorization. This determines what sort of actions they will be able to perform.
  • Choose from two different authorization options. The level of a user’s authorization can be either role-based or dictated by a policy that the administrator sets. Azure’s role-based access control (Azure RBAC) enables users to both manage and access stored data. A key vault access policy limits users to data access.
  • Secure your data in the way that best fits your needs. Your data can be protected by either industry-standard algorithm software or hardware security modules (HSMs). Your data is even safe from Microsoft, as the vaults are designed so that not even Microsoft can get in and access the information.
  • Easily monitor who accesses your vault(s). Microsoft Azure Key Vault enables administrators to keep a close eye on their secrets. Users can activate a vault-logging feature that will track every piece of information. It will record who accessed the vault, when they accessed it, and other pertinent details.
  • Choose how you want to store your logs. Users can store logs in multiple ways. These logs can be archived, sent to the Azure monitor logs area, or streamed to an events hub. The logs can be secured to prevent unauthorized viewing and deleted when they are no longer needed.

Reviews from Real Users

Microsoft Azure Key Vault stands out among their competitors for a number of reasons. Two major ones are the overall robustness of the solution and its ability to protect and manage many different digital asset types. The many features that the solution offers allows users to tailor their experience to meet their specific needs. Its flexibility enables users to accomplish a wide variety of security and identity management related tasks. It empowers users to secure a wide array of assets. Users can keep many different types of secrets away from bad actors.

A cloud architect at a marketing services firm writes, “All its features are really valuable. It's really well thought-out. It's a complete turnkey solution that has all the concerns taken care of, such as access control and management. You can use it in infrastructure as code to create key vaults, APIs, PowerShells, CLIs, even Terraform. You can also use it in different services across the board. If you have app services, or virtual machines, Kubernetes, or Databricks, they can all use Key Vault effectively. In my opinion, in a DevSecOps, DevOps, or even in a modern Azure implementation, you have to use Azure Key Vault to make sure you're addressing security and identity management concerns. By "identity" I mean usernames, passwords, cryptography, etcetera. It's a full-blown solution and it supports most breeds of key management: how you store keys and certify.”

Roger L., the managing director of Cybersecurity Architecture at Peloton Systems, says, “The most valuable aspect of the product is its ability to keep our admin password accounts for keys and a lot of our high-value assets. It can manage those types of assets. So far, the product does a great job of managing keys.”

 

Sample Customers

Autodesk, Clevy, Stackery
Adobe, DriveTime, Johnson Controls, HP, InterContinental Hotels Group, ASOS
Buyer's Guide
AWS Secrets Manager vs. Azure Key Vault
December 2024
Free Report: AWS Secrets Manager vs. Azure Key Vault
Find out what your peers are saying about AWS Secrets Manager vs. Azure Key Vault and other solutions. Updated: December 2024.
DOWNLOAD NOW
824,154 professionals have used our research since 2012.
See our AWS Secrets Manager vs. Azure Key Vault report.
See our list of best Enterprise Password Managers vendors.

We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.