Try our new research platform with insights from 80,000+ expert users

CyberArk Privileged Access Manager vs HashiCorp Vault comparison

CyberArk and HashiCorp are both solutions in the Enterprise Password Managers category. CyberArk is ranked #3 with an average rating of 8.9, while HashiCorp is ranked #4 with an average rating of 8.3. Additionally, 94% of CyberArk users are willing to recommend the solution, compared to 88% of HashiCorp users who would recommend it.
CyberArk Privileged Access ...
Read 197 CyberArk Privileged Access Manager reviews
  • 8,412 Views
  • 4,977 Comparison Views
94% willing to recommend
HashiCorp Vault
Read 16 HashiCorp Vault reviews
  • 12,115 Views
  • 8,055 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 16, 2024

CyberArk Privileged Access Manager and HashiCorp Vault compete in privileged access management and secrets management. CyberArk may have an advantage due to its modular, feature-rich design appealing to enterprises with complex needs.

Features: CyberArk Privileged Access Manager provides Central Policy Manager, Privileged Session Manager, and Enterprise Password Vault, facilitating modular integrations and scalability for managing, protecting, and monitoring privileged access. HashiCorp Vault emphasizes secrets management with dynamic secrets and leasing, supporting API integration suited for DevOps and cloud-agnostic environments.

Room for Improvement: CyberArk could improve user experience, session recording search, better documentation, and user training. Meanwhile, HashiCorp Vault users require enhanced cloud integration documentation and a more intuitive initial setup process.

Ease of Deployment and Customer Service: CyberArk supports on-premises, private, and hybrid clouds targeting large enterprises with complex deployments, offering costly yet comprehensive support. HashiCorp Vault, offering an open-source version, suits those with cloud deployments needing fewer resources but may lack the structured support that CyberArk provides.

Pricing and ROI: CyberArk is often expensive, with additional fees for certain features but offers significant ROI in security and risk reduction. HashiCorp Vault's open-source option offers cost savings, with enterprise features scaling in cost but providing reasonable pricing for advanced features, making it a sustainable option for long-term investments with potentially lower upfront costs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Privileged Access Manager vs. HashiCorp Vault Report (Updated: December 2024).
Buyer's Guide
CyberArk Privileged Access Manager vs. HashiCorp Vault
December 2024
Download the complete report
Helped 824,067 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.1
CyberArk Privileged Access Manager enhances security by automating tasks, improving compliance, reducing breaches, and increasing efficiency and ROI.
No sentiment score available
 

Customer Service

Sentiment score
6.5
CyberArk's support is efficient and knowledgeable, but challenges exist in response times, communication, and handling complex cases.
No sentiment score available
Response times seem to correlate with the strength of the relationship with the CyberArk account manager, with quicker responses when rapport is strong.
They are helpful, but complex issues can take a long time to resolve, which can delay solutions for urgent customer issues.
CyberArk's customer service has improved recently and is now very responsive.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
reviewer2619339 - PeerSpot reviewerreviewer2618997 - PeerSpot reviewerLasantha Wijesinghe - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.7
CyberArk Privileged Access Manager is highly scalable and versatile, though complexity in licensing and configurations may pose challenges.
Sentiment score
7.5
HashiCorp Vault offers robust scalability, performing well on Kubernetes, with scalability ratings of seven to eight out of ten.
We started small and expanded it to an enterprise level, and are now moving to the cloud for further growth.
We have different operating systems, database systems, and decentralized infrastructure.
I find SaaS to be more promising in scalability.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
Lasantha Wijesinghe - PeerSpot reviewer
TB
reviewer2619339 - PeerSpot reviewer
 

Stability Issues

Sentiment score
7.8
CyberArk Privileged Access Manager is stable, with issues mainly from configuration, infrastructure, or resource limitations rather than the software.
Sentiment score
7.7
HashiCorp Vault is stable with high ratings despite occasional issues, praised for machine communication but limited for regional scaling.
Proper fine-tuning and expertise ensure the product performs well.
Overall, the stability of the solution is high.
It has a large customer base and positive feedback within my network.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
Lasantha Wijesinghe - PeerSpot reviewer
TB
reviewer2619339 - PeerSpot reviewer
 

Room For Improvement

CyberArk Privileged Access Manager needs UI, integration, and performance improvements, simpler setup, cost-effectiveness, and more plugins for usability.
HashiCorp Vault struggles with cloud integration, documentation, costs, UI, support, automation, customization, stability, pricing, and plugin features.
They want everything to be on the cloud, but even in the SaaS version of CyberArk Privileged Access Manager, they need to deploy some servers on-premises.
In the long term, I would like to see these processes simplified, especially for on-premise installations.
Incorporating automated onboarding and offboarding features directly into the product would reduce the maintenance burden on administrators.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
reviewer2618997 - PeerSpot reviewerLasantha Wijesinghe - PeerSpot reviewerreviewer2619339 - PeerSpot reviewer
 

Setup Cost

CyberArk Privileged Access Manager is costly, especially for small businesses, though discounts exist for larger purchases.
HashiCorp Vault's enterprise edition offers valuable features but is costly, with some users finding the pricing model confusing.
CyberArk is expensive compared to other products I know.
CyberArk's SaaS solution is particularly expensive.
CyberArk is comparatively expensive compared to other PAM solutions, such as Delinea, especially during renewal.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
Lasantha Wijesinghe - PeerSpot reviewerreviewer2619339 - PeerSpot reviewerreviewer2618997 - PeerSpot reviewer
 

Valuable Features

CyberArk Privileged Access Manager enhances security with password management, session monitoring, integration flexibility, and real-time auditing for compliance.
Consul offers seamless integration, robust encryption, and user-friendly APIs for secure, cloud-agnostic management with easy CI/CD expansion.
CyberArk Privileged Access Manager helps ensure data privacy because we now know who is using which credentials and at what time.
For me, CyberArk Privileged Access Manager's most valuable features are password and session management.
After giving access, it continually checks if the user is the same user.
For more quotes and insights, download the CyberArk Privileged Access Manager report
No quotes available
For more quotes and insights, download the HashiCorp Vault report
TB
reviewer2619339 - PeerSpot reviewerreviewer2618997 - PeerSpot reviewer
 

Categories and Ranking

CyberArk Privileged Access ...
Ranking in Enterprise Password Managers
3rd
Average Rating
8.6
Reviews Sentiment
6.9
Number of Reviews
197
Ranking in other categories
User Activity Monitoring (1st), Privileged Access Management (PAM) (1st), Mainframe Security (2nd), Operational Technology (OT) Security (3rd)
HashiCorp Vault
Ranking in Enterprise Password Managers
4th
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
16
Ranking in other categories
No ranking in other categories
 

Featured Reviews

SatishIyer - PeerSpot reviewer
Lets you ensure relevant, compliant access in good time and with an audit trail, yet lacks clarity on MITRE ATT&CK
When I was a component owner for PAM's Privileged Threat Analytics (PTA) component, what I wanted was a clear mapping to the MITRE ATT&CK framework, a framework which has a comprehensive list of use cases. We reached out to the vendor and asked them how much coverage they have of the uses cases found on MITRE, which would have given us a better view of things while I was the product owner. Unfortunately they did not have the capability of mapping onto MITRE's framework at that time. PTA is essentially the monitoring interface of the broker (e.g. Privileged Access Management, the Vault, CPM, PSM, etc.), and it's where you can capture your broker bypass and perform related actions. For this reason, we thought that this kind of mapping would be required, but CyberArk informed us that they did not have the capability we had in mind with regard to MITRE ATT&CK. I am not sure what the situation is now, but it would definitely help to have that kind of alignment with one of the more well-known frameworks like MITRE. For CyberArk as a vendor, it would also help them to clearly spell out in which areas they have full functionality and in which ares they have partial or none. Of course, it also greatly benefits the customers when they're evaluating the product.
Read full review
KishoreKumar1 - PeerSpot reviewer
Useful for machine-to-machine communication and has secret engine feature
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets. The access management feature in HashiCorp is great, especially if you are considering situations where users are getting onboarded. They can manage their passwords themselves, and it integrates well with Active Directory or any other directory services. This is particularly useful for user management and applications that communicate with each other without human intervention.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
See recommendations
824,067 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
32%
Financial Services Firm
12%
Computer Software Company
11%
Manufacturing Company
6%
Financial Services Firm
19%
Computer Software Company
15%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Sailpoint IdentityIQ compare with CyberArk PAM?
We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...
See all answers
What do you like most about CyberArk Privileged Access Manager?
The most valuable features of the solution are control and analytics.
See all answers
What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?
CyberArk Privileged Access Manager comes at a high cost. But the solution is worth its price.
See all answers
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
See all answers
What do you like most about HashiCorp Vault?
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...
See all answers
What is your experience regarding pricing and costs for HashiCorp Vault?
The enterprise version would require considering factors like the level of support needed, the amount of secret data being stored, and replication needs. But in my case, the open-source version wor...
See all answers
 

Comparisons

Microsoft Entra ID vs CyberArk Privileged Access Manager Logo
Microsoft Entra ID vs CyberArk Privileged Access Manager
Compared 10% of the time
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager
Compared 8% of the time
Delinea Secret Server vs CyberArk Privileged Access Manager Logo
Delinea Secret Server vs CyberArk Privileged Access Manager
Compared 8% of the time
WALLIX Bastion vs CyberArk Privileged Access Manager Logo
WALLIX Bastion vs CyberArk Privileged Access Manager
Compared 6% of the time
More CyberArk Privileged Access Manager Competitors
AWS Secrets Manager vs HashiCorp Vault Logo
AWS Secrets Manager vs HashiCorp Vault
Compared 26% of the time
Azure Key Vault vs HashiCorp Vault Logo
Azure Key Vault vs HashiCorp Vault
Compared 24% of the time
Bitwarden vs HashiCorp Vault Logo
Bitwarden vs HashiCorp Vault
Compared 11% of the time
Keeper vs HashiCorp Vault Logo
Keeper vs HashiCorp Vault
Compared 11% of the time
1Password vs HashiCorp Vault Logo
1Password vs HashiCorp Vault
Compared 4% of the time
More HashiCorp Vault Competitors
 

Product Reports

Buyer's Guide
CyberArk Privileged Access Manager
December 2024
CyberArk Privileged Access Manager reportDownload CyberArk Privileged Access Manager product report
Buyer's Guide
HashiCorp Vault
December 2024
HashiCorp Vault reportDownload HashiCorp Vault product report
 

Also Known As

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault
No data available
 

Learn More

CyberArk
HashiCorp
 

Overview

CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

Benefits of CyberArk Privileged Access Manager

Some of CyberArk Privileged Access Manager’s benefits include:

  • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
  • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
  • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

Reviews from Real Users

CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management. 

The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

HashiCorp Vault Features

  • Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.

  • Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.

  • Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.

  • Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

Reviews from Real Users

The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

“The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

 

Sample Customers

Rockwell Automation
Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
Buyer's Guide
CyberArk Privileged Access Manager vs. HashiCorp Vault
December 2024
Free Report: CyberArk Privileged Access Manager vs. HashiCorp Vault
Find out what your peers are saying about CyberArk Privileged Access Manager vs. HashiCorp Vault and other solutions. Updated: December 2024.
DOWNLOAD NOW
824,067 professionals have used our research since 2012.
See our CyberArk Privileged Access Manager vs. HashiCorp Vault report.
See our list of best Enterprise Password Managers vendors.

We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.