Try our new research platform with insights from 80,000+ expert users

HashiCorp Vault vs LastPass comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

HashiCorp Vault
Ranking in Enterprise Password Managers
4th
Average Rating
8.2
Number of Reviews
16
Ranking in other categories
No ranking in other categories
LastPass
Ranking in Enterprise Password Managers
16th
Average Rating
7.4
Number of Reviews
12
Ranking in other categories
Single Sign-On (SSO) (21st), AIOps (24th)
 

Mindshare comparison

As of November 2024, in the Enterprise Password Managers category, the mindshare of HashiCorp Vault is 14.8%, down from 18.2% compared to the previous year. The mindshare of LastPass is 2.9%, down from 3.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Enterprise Password Managers
 

Featured Reviews

KishoreKumar1 - PeerSpot reviewer
Apr 15, 2024
Useful for machine-to-machine communication and has secret engine feature
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets. The access management feature in HashiCorp is great, especially if you are considering situations where users are getting onboarded. They can manage their passwords themselves, and it integrates well with Active Directory or any other directory services. This is particularly useful for user management and applications that communicate with each other without human intervention.
MK
Oct 21, 2021
Straightforward to set up, good support, intuitive to use, and offers good value for the cost
The most valuable feature is being able to use a single master password to access all of your other passwords. One feature that is really important to us is the ability to create secure notes. In our scenario, these are notes such as how to get some of our devices on the network. They are processes and procedures that we don't want anybody else to see, especially within the IT department. It's a small department and we have very many processes that we use, but not on a daily basis, so we aren't going to remember them. By using LastPass and secure notes, we can go back to those notes in a secure fashion and remind ourselves how to do certain things. For instance, how to create a test database for accounting, which is something that we do once a year. We don't want that to be out in a non-secure fashion, where somebody in the public can see it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it easily and see good results rapidly. When you integrate an internal API or application, it quickly manages that application's secrets."
"The interface is very simple to navigate."
"The product is free and easy to use. It is well documented with an easy implementation process."
"The tool's dynamic rotation of the password credentials is good."
"It can still be configured by a separate team other than developers. That's why I think it's more secure."
"We use the solution for secret management."
"The solution is stable. It has been working perfectly without any problem."
"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline."
"Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do."
"It's always hard to put a value on return on investment. You avoid one breach and it's paid for a million times over. We got a penetration test company internally, just to see how secure our network is, and there happened to be one bit of software that had been overlooked by an external company that managed it. It hadn't been upgraded so that managed to get them into the network. They would've been able to access through the test thing a file that we had previously. If that was a real-life scenario they would have been able to get into our network and get full access to our organization's passwords. If they did get in, they would have gotten access to the cloud. The ROI we see is that we are completely secured compared to what we had previously where there was a vulnerability."
"This product helps keep us secure."
"Tech support has been good. We haven't needed it much, because it is not a complex application. There is not that much you have to do with it."
"Reduction in number of sensitive passwords stored insecurely on local systems."
"Increased security around password management for teams and collaborative efforts with external vendors."
"Until now, I haven't found anything like the dashboard. It gives you a security score. I find that to be really great. The Sharing Center is really great as well. And the Security Challenge is really great too."
"The most valuable feature for me is being able to pair applications and user permissions."
 

Cons

"The product needs to improve its customization. It should be also more like easy to plug and play."
"A drawback for some clients who have to be PCI compliant is that they still need to use and subscribe to an HSM (Hardware Security Module) solution."
"I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."
"We could use more documentation, primarily to do with integrations."
"I would like to see better integration of HashiCorp Vault with SAP products."
"In my opinion, HashiCorp Vault could improve its user interface. Right now, they don't offer much in terms of a graphical interface, which means you usually have to manage things manually through API calls. I think CyberArk has a better approach because it provides a UI that integrates features across all its components, making it easier, especially for new users or those from organizations with strict licensing policies."
"The documentation is very general; it should have more examples and more use cases."
"The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass."
"I also don't like the add-in for Internet Explorer and Google Chrome, because when you do the add-in, you can actually save that to your credentials in your IE, and the problem is, if I left my screen open, or any of the IT people leave their screen open someone could come up and access all their credentials in LastPass without having to put a password in within your own network. I don't like that functionality. We've banned that from any of our staff adding that as an add-in because we see that as a security risk."
"Our biggest issue over the years was around the stability of the LDAP sync to AD."
"I would like to be able to reduce the log out time of the session."
"I struggle a little bit with the mobile app. As a browser extension, it works really well, and we are able to get to what we need to. However, on the phone, it's not quite as easy to navigate."
"The ability to set up an account expiration limit/date would be very useful."
"It is not super feature laden. It does not stand out versus the competition."
"Right now we have two products; there is the password manager and there is the authenticator app. Ideally, these should be fully integrated and support better handling of two-factor authentication or any other authenticator data."
 

Pricing and Cost Advice

"The solution's cost is reasonable."
"It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
"I am using the open-source version of Vault and I would have to buy a license if I want to get support."
"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."
"The AWS version is much cheaper than HashiCorp Vault."
"The product is expensive."
"The previous pricing was of good value. I don't really know, as of now, whether the new pricing is. The Enterprise license is $48 per license per year now. That is a steep increase of $24, which is what it was when we first signed up."
"I have been involved with many password managers. Passportal, Secret Server, CyberArk, and BeyondTrust. I chose LastPass for our organization because of the pricing. The organization didn't want to implement something really expensive. LastPass, for what it's offering, for the price that it's offering the service, is unbeatable."
"LastPass was cheap as chips. It was very cheap, hence one of the reasons we went with it. If you're a small organization and you're after something that'll do 90% of your requirements, it's very good. Licensing and all that was really cheap and simple to understand."
"The pricing and licensing are okay. Basically, at the last contract negotiation, they attempted to jack the rate up and we just said, "No." We still did negotiations with them, but they bumped everything up quite a bit."
"It would be nice to do a quarterly true-up process with them versus having to buy 50 licenses at a time when we realize we're out, then we have to buy more. So far, they have been nice about letting us exceed our allotment and just letting us true-up on our own, but a more robust quarterly true-up process would be good."
"You do not have to purchase licenses for your entire organization. You can scale as adoption grows."
"The subscription model is rated at a fair price."
"In terms of pricing, my feeling is that they are all roughly the same. LastPass is in line with its competitors, plus or minute a dollar or two per month."
report
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Computer Software Company
15%
Manufacturing Company
8%
Government
6%
Computer Software Company
14%
Insurance Company
12%
Financial Services Firm
10%
Retailer
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
What do you like most about HashiCorp Vault?
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...
What is your experience regarding pricing and costs for HashiCorp Vault?
The enterprise version would require considering factors like the level of support needed, the amount of secret data being stored, and replication needs. But in my case, the open-source version wor...
Ask a question
Earn 20 points
 

Also Known As

No data available
LastPass Business, LastPass Enterprise, Lastpasss
 

Overview

 

Sample Customers

Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
Deakin University, Duke University, Code.org, Influitive, PeopleKeys, SMA Technologies, Skynamo
Find out what your peers are saying about HashiCorp Vault vs. LastPass and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.