HashiCorp Vault vs LastPass comparison

Read 12 LastPass reviews

1,356 Views
1,310 Comparison Views

78% willing to recommend

HashiCorp Vault

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 16, 2024

LastPass and HashiCorp Vault compete in secure password and data management. LastPass seems to have the upper hand in simplicity and cost-effectiveness for small to medium businesses, whereas HashiCorp Vault is favored for its feature depth and enterprise focus.

Features: LastPass offers secure password storage, autofill, and easy integration suitable for small to medium-sized enterprises. HashiCorp Vault provides advanced secrets management, encryption services, and access controls, which are highly configurable, making it fit for complex and large enterprise environments.

Room for Improvement: LastPass could enhance features by expanding enterprise capabilities like advanced reporting, multi-factor authentication robustness, and better integration with enterprise systems. HashiCorp Vault can improve by streamlining its setup process, enhancing user interface simplicity, and reducing the learning curve for new users.

Ease of Deployment and Customer Service: LastPass provides a swift deployment experience with comprehensive support, making it accessible for various team sizes. HashiCorp Vault demands a more detailed infrastructure setup, better suited to sophisticated IT environments, supported by detailed documentation and responsive customer assistance.

Pricing and ROI: LastPass, with its subscription model, offers a lower initial cost, ensuring ROI for smaller businesses by balancing affordability with essential security features. HashiCorp Vault, while representing a larger initial investment, justifies this with its extensive feature set, catering to larger enterprises seeking comprehensive data security solutions.

To learn more, read our detailed HashiCorp Vault vs. LastPass Report (Updated: March 2025).

HashiCorp Vault vs. LastPass

Download the complete report

Helped 842,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

HashiCorp Vault

Ranking in Enterprise Password Managers

4th

Average Rating

8.2

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

No ranking in other categories

LastPass

Ranking in Enterprise Password Managers

17th

Average Rating

7.4

Reviews Sentiment

6.3

Number of Reviews

Ranking in other categories

Single Sign-On (SSO) (21st), AIOps (28th)

Mindshare comparison

As of March 2025, in the Enterprise Password Managers category, the mindshare of HashiCorp Vault is 12.9%, down from 14.4% compared to the previous year. The mindshare of LastPass is 2.8%, up from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Enterprise Password Managers

Featured Reviews

AKASHGUPTA3

Credit Analyst at Standard Chartered Bank

Easy to manage and maintain the password API but stability could be improved

I would advise doing a Proof of Concept first and then deciding accordingly because your use case might be simple. You can try out AWS Key Management or Azure Key Vault. They are different products. Do the POC and then decide what you need. Overall, I would rate the solution a six out of ten. No solution is a ten in my opinion.

Read full review

Mike Klaus

Senior Systems Analyst/Administrator at a agriculture with 1-10 employees

Straightforward to set up, good support, intuitive to use, and offers good value for the cost

The most valuable feature is being able to use a single master password to access all of your other passwords. One feature that is really important to us is the ability to create secure notes. In our scenario, these are notes such as how to get some of our devices on the network. They are processes and procedures that we don't want anybody else to see, especially within the IT department. It's a small department and we have very many processes that we use, but not on a daily basis, so we aren't going to remember them. By using LastPass and secure notes, we can go back to those notes in a secure fashion and remind ourselves how to do certain things. For instance, how to create a test database for accounting, which is something that we do once a year. We don't want that to be out in a non-secure fashion, where somebody in the public can see it.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is stable. It has been working perfectly without any problem."

"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline."

"It can still be configured by a separate team other than developers. That's why I think it's more secure."

"For me, the most valuable features include that it's easy to manage and maintain the password API for retrieving passwords and other things."

"The most valuable feature of HashiCorp Vault is version control."

"The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets."

"We use the solution for secret management."

"It is a good product to consider for companies who are looking to build on-premise or hybrid infrastructure."

More HashiCorp Vault pros

"The stability has been rock solid. A couple of years ago, they were breached. However, if you had two-factor authentication enabled, it didn't affect you. We did, so it has been good."

"It's always hard to put a value on return on investment. You avoid one breach and it's paid for a million times over. We got a penetration test company internally, just to see how secure our network is, and there happened to be one bit of software that had been overlooked by an external company that managed it. It hadn't been upgraded so that managed to get them into the network. They would've been able to access through the test thing a file that we had previously. If that was a real-life scenario they would have been able to get into our network and get full access to our organization's passwords. If they did get in, they would have gotten access to the cloud. The ROI we see is that we are completely secured compared to what we had previously where there was a vulnerability."

"This product helps keep us secure."

"Tech support has been good. We haven't needed it much, because it is not a complex application. There is not that much you have to do with it."

"Off-boarding of people is easy without changing shared account passwords."

"Reduction in number of sensitive passwords stored insecurely on local systems."

"Increased security around password management for teams and collaborative efforts with external vendors."

"It's improved security; we don't have to worry about people storing password loosely and secure them."

More LastPass pros

Cons

"The technical support was hard to get a hold of and lacking in service."

"It would be helpful to have more advanced features."

"The documentation is very general; it should have more examples and more use cases."

"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."

"We could use more documentation, primarily to do with integrations."

"The product needs to improve its customization. It should be also more like easy to plug and play."

"I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."

"An improvement needed is the ability for auto-initialization. There should be an inbuilt option for automatic initialization rather than running it manually."

More HashiCorp Vault cons

"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."

"Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data."

"The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass."

"We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine."

"I would like to be able to reduce the log out time of the session."

"The management through the plugin is poor. It consumes tons of client resources especially as an administrator."

"LastPass has a problem syncing the passwords to all of the users."

"It is not super feature laden. It does not stand out versus the competition."

More LastPass cons

Pricing and Cost Advice

"The product is expensive."

"I am using the open-source version of Vault and I would have to buy a license if I want to get support."

"The solution's cost is reasonable."

"It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."

"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."

"The AWS version is much cheaper than HashiCorp Vault."

"In terms of pricing, my feeling is that they are all roughly the same. LastPass is in line with its competitors, plus or minute a dollar or two per month."

"I was not terribly alarmed with the pricing, and am pleased with the fact that a home license is included with each business license."

"LastPass was cheap as chips. It was very cheap, hence one of the reasons we went with it. If you're a small organization and you're after something that'll do 90% of your requirements, it's very good. Licensing and all that was really cheap and simple to understand."

"You do not have to purchase licenses for your entire organization. You can scale as adoption grows."

"The previous pricing was of good value. I don't really know, as of now, whether the new pricing is. The Enterprise license is $48 per license per year now. That is a steep increase of $24, which is what it was when we first signed up."

"If you import from sources like XML, keepass, CSV files be sure to clean the import files, this reduces the adjustments in the slow tool itself."

"The pricing and licensing are okay. Basically, at the last contract negotiation, they attempted to jack the rate up and we just said, "No." We still did negotiations with them, but they bumped everything up quite a bit."

"The subscription model is rated at a fair price."

More LastPass pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.

See recommendations

842,592 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

20%

Computer Software Company

15%

Manufacturing Company

Government

Computer Software Company

15%

Financial Services Firm

12%

University

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is better - HashiCorp Vault or AWS Secrets Manager?

HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...

See all answers

What do you like most about HashiCorp Vault?

The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...

See all answers

What is your experience regarding pricing and costs for HashiCorp Vault?

If I were to set it up in AWS Secret Management, I would have to manage it, pay, and create secrets without being cloud agnostic. The advantage with Vault is that it is cloud agnostic. I can deploy...

See all answers

Ask a question

Earn 20 points

Comparisons

AWS Secrets Manager vs HashiCorp Vault

Compared 24% of the time

Bitwarden vs HashiCorp Vault

Compared 19% of the time

Azure Key Vault vs HashiCorp Vault

Compared 15% of the time

Keeper vs HashiCorp Vault

Compared 11% of the time

BeyondTrust DevOps Secrets Safe vs HashiCorp Vault

Compared 1% of the time

More HashiCorp Vault Competitors

BeyondTrust Password Safe vs LastPass

Compared 13% of the time

Azure Key Vault vs LastPass

Compared 12% of the time

Zoho Vault vs LastPass

Compared 12% of the time

Keeper vs LastPass

Compared 11% of the time

OneLogin by One Identity vs LastPass

Compared 6% of the time

More LastPass Competitors

Product Reports

HashiCorp Vault

Download HashiCorp Vault product report

Download LastPass product report

Also Known As

No data available

LastPass Business, LastPass Enterprise, Lastpasss

Overview

HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management.

The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

HashiCorp Vault Features

Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.
Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.
Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.
Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

Reviews from Real Users

“The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

“The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

HashiCorp

Auto-pilot for all your passwords

LastPass removes obstacles, letting you get back to the things you love most.

Log in and go

Once you save a password in LastPass, you'll always have it when you need it; logging in is fast and easy.

Passwordless login

Gain instant access to your LastPass vault by using the LastPass Authenticator instead of your master password.

Generate strong passwords

The built-in password generator creates long, randomized passwords that protect against hacking.

Store digital records

Insurance cards, memberships, Wi-Fi passwords... keep all your notes safe and easy to find.

Share effortlessly

Some things shouldn't be sent in a text. Conveniently and safely share passwords and notes with anyone.

Dark web monitoring

Stop worrying about data breaches. Get alerts if your personal information is at risk.

Sample Customers

Adobe, SAP Ariba, Citadel, Spaceflight, Cruise

Deakin University, Duke University, Code.org, Influitive, PeopleKeys, SMA Technologies, Skynamo

HashiCorp Vault vs. LastPass