Try our new research platform with insights from 80,000+ expert users

AWS Secrets Manager vs HashiCorp Vault comparison

Amazon Web Services (AWS) and HashiCorp are both solutions in the Enterprise Password Managers category. Amazon Web Services (AWS) is ranked #2 with an average rating of 8.8, while HashiCorp is ranked #4 with an average rating of 8.5. Amazon Web Services (AWS) holds a 16.2% mindshare in EPM, compared to HashiCorp’s 7.7% mindshare. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 92% of HashiCorp users who would recommend it.
AWS Secrets Manager
Read 15 AWS Secrets Manager reviews
  • 7,152 Views
  • 7,152 Comparison Views
100% willing to recommend
HashiCorp Vault
Read 27 HashiCorp Vault reviews
  • 5,029 Views
  • 5,029 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 2, 2025

HashiCorp Vault and AWS Secrets Manager are competitors in the realm of managing sensitive information. HashiCorp Vault appears to have an edge due to its pricing and support satisfaction, whereas AWS Secrets Manager excels in integration within the AWS ecosystem.

Features: HashiCorp Vault provides dynamic secrets and key revocation, open-source flexibility, and comprehensive policy configurations. AWS Secrets Manager integrates seamlessly with AWS services, supports auto-rotation of credentials, and offers a user-friendly API for secret retrieval.

Room for Improvement: HashiCorp Vault could benefit from a more simplified initial setup process, greater cloud-native integrations, and reduced complexity in policy management. AWS Secrets Manager might enhance non-AWS service integration, offer more competitive pricing, and increase cross-platform compatibility.

Ease of Deployment and Customer Service: HashiCorp Vault demands a more involved setup, which can be beneficial for tailored solutions but might pose challenges for less experienced users. AWS Secrets Manager offers easier deployment due to its tight AWS integration, appealing to users within the AWS ecosystem. HashiCorp potentially provides more responsive support for diverse deployment environments.

Pricing and ROI: HashiCorp Vault presents favorable pricing for budget-conscious environments and focuses on long-term ROI for non-AWS integrations. AWS Secrets Manager, while having higher initial costs, offsets these with reduced management overhead and enhanced security for AWS-centric operations, making it attractive for businesses heavily invested in AWS services.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Secrets Manager vs. HashiCorp Vault Report (Updated: January 2026).
Buyer's Guide
AWS Secrets Manager vs. HashiCorp Vault
January 2026
Download the complete report
Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Secrets Manager
Ranking in Enterprise Password Managers
2nd
Ranking in Secrets Management Tools
3rd
Average Rating
8.8
Reviews Sentiment
7.1
Number of Reviews
15
Ranking in other categories
No ranking in other categories
HashiCorp Vault
Ranking in Enterprise Password Managers
4th
Ranking in Secrets Management Tools
1st
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
27
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of January 2026, in the Enterprise Password Managers category, the mindshare of AWS Secrets Manager is 16.2%, down from 20.4% compared to the previous year. The mindshare of HashiCorp Vault is 7.7%, down from 13.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Enterprise Password Managers Market Share Distribution
ProductMarket Share (%)
AWS Secrets Manager16.2%
HashiCorp Vault7.7%
Other76.1%
Enterprise Password Managers
 

Q&A Highlights

NC
Netanya Carmi
Content Manager at PeerSpot
Dec 12, 2021
Which is better - HashiCorp Vault or AWS Secrets Manager?
yet to learn both
See all answers
 

Featured Reviews

Mahadev Metre - PeerSpot reviewer
Mahadev Metre
DevOps Engineer at Paydoh
Consistent security and efficiency improvements optimize IT infrastructure with effective management
When creating AWS Secrets Manager, it should be automated using tools such as Terraform, Puppet, or Ansible. With Terraform code, you specify the encryption key, secret name, rotation policy, and secret replication. Human error occurs when feeding secret values manually, especially with large amounts of secrets to input. Secrets should never be protected only by IAM. They should be protected by multiple layers, such as IAM and one or two KMS keys. Additional security measures could be beneficial if necessary. The rotation policy is crucial because some secrets may become obsolete, require updates, or get compromised. With a weekly rotation policy, if unauthorized access occurs, the exposure is limited to seven days. The rotation policy can be customized according to needs.
Read full review
Manish Indupuri - PeerSpot reviewer
Manish Indupuri
senior DevOps engineer at a tech services company with 10,001+ employees
Centralized secret management has strengthened security and simplified compliance across cloud-native environments
Configuring HashiCorp Vault since we are mainly using it in Kubernetes or OpenShift clusters took some time and effort to align with our deployment. The initial setup can be a little confusing and complex for someone who is newer. However, it is not impossible to achieve, but it will take some time to understand the product. The ACLs within HashiCorp Vault, such as policies and AppRole authentication, were not intuitive at first. However, we slowly became habituated to the product once we began using it. Once we moved past the learning curve of these challenges, HashiCorp Vault becomes a critical security layer of our workloads. The only minor challenge is the initial setup complexity, especially for teams new to HashiCorp Vault's authentication methods and storage backends. Other than that, it works flawlessly.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is security."
"The product is easy to use and is inexpensive."
"The most valuable feature of AWS Secrets Manager is its seamless integration with various AWS services."
"I would highly recommend AWS Secrets Manager for secret management in AWS."
"The most valuable feature of AWS Secrets Manager is the ability to keep data secret and assign access permissions to people to grant or restrict access."
"Integrating with other services was straightforward, especially within the AWS environment."
"The API is fine and works well."
"AWS Secrets Manager is used for storing secret information that has to be a secret from your customer and your employees."
More AWS Secrets Manager pros
"I will give advice that most people should go for HashiCorp Vault because compared to some other vaulting secrets solutions, you can go for HashiCorp Vault because it is a vault that can protect all of your data, all of your application secrets, and domain."
"The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp."
"It can still be configured by a separate team other than developers. That's why I think it's more secure."
"The tool's dynamic rotation of the password credentials is good."
"In my opinion, the best features with HashiCorp Vault are that it works as one solution providing security across all the clouds."
"The most valuable feature of HashiCorp Vault is the management of tickets in the pipeline."
"It's stable. I would rate the stability a nine out of ten."
"We were using it because we have compliance requirements around secret management. Having a secure vault and encrypting data was an additional requirement. When we looked at it first, we were just looking for a vault, like a lockbox. The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive."
More HashiCorp Vault pros
 

Cons

"There is a potential improvement in connecting AWS Secrets Manager to Jenkins CI/CD pipeline to automatically reflect changes in production."
"If you add one more layer of security to AWS Secrets Manager, even the programmer will not be able to see the secrets."
"An area for improvement in AWS Secrets Manager could be expanding integration options beyond AWS services."
"If you don't have enterprise support, then you will not be able to get through to them to get the help. It is not only applicable to AWS Secrets Manager. It is also applicable to any service on AWS."
"There is a need for better environmental implementation, such as having a security fund as a solution."
"The sidecar feature has room for improvement."
"There is room for improvement in the pricing model."
"AWS Secrets Manager could support hybrid infrastructure."
More AWS Secrets Manager cons
"One of the challenges we had was that we used a really old version, so part of what we plan for this year is to migrate it to at least a supported version."
"HashiCorp Vault is quite complex to use for new users and has a steep learning curve; I would consider the tool very good for highly advanced teams who manage huge numbers of credentials, but it's probably not very appropriate for smaller teams with maybe less experience using vaults such as this."
"HashiCorp Vault can be improved more because it has provided only metadata and API paths."
"It would be helpful to have more advanced features."
"An improvement needed is the ability for auto-initialization. There should be an inbuilt option for automatic initialization rather than running it manually."
"The documentation is very general; it should have more examples and more use cases."
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."
"I think HashiCorp Vault could improve by being a little bit more accommodating to startup companies for providing access and helping them understand the value of the tools."
More HashiCorp Vault cons
 

Pricing and Cost Advice

"I don't believe there is a license cost for the solution."
"We purchase a monthly license for the product."
"We've observed that AWS Secrets Manager pricing is based on a per-secret-per-month model. As a result, we prefer to divide our secrets into individual pieces to increase security and grant specific access permissions to certain secrets, systems, or individuals. However, this approach results in higher costs. Therefore, we have been exploring ways to combine our secrets into groups to reduce expenses and simplify management. Nonetheless, we acknowledge that this issue may not be related to the secret manager's functionality."
"The solution is expensive."
"The cost is somewhat high."
"The product is expensive."
"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."
"I am using the open-source version of Vault and I would have to buy a license if I want to get support."
"The AWS version is much cheaper than HashiCorp Vault."
"It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
"The solution's cost is reasonable."
report
See which vendors are best for you
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
See recommendations
881,082 professionals have used our research since 2012.
 

Answers from the Community

NC
Netanya Carmi
Content Manager at PeerSpot
Dec 12, 2021
Dec 12, 2021
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic solution, HashiCorp Vault allows you to be flexible in the cloud infrastructure that you choose to use. It is completely compatible and integratable with a myriad of different platforms. You can determin...
See 2 answers
KK
Kmk Kan
Works at Zerto
Nov 23, 2021
yet to learn both
Read full answer
DG
Dovid Gelber
Tech blogger
Dec 12, 2021
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic solution, HashiCorp Vault allows you to be flexible in the cloud infrastructure that you choose to use. It is completely compatible and integratable with a myriad of different platforms. You can determine what you want to use and HashiCorp Vault will function without issue, regardless of what you choose. If you are using HashiCorp Vault as a multi-cloud solution, then you have an even greater number of platform options. You will be able to mix and match which cloud platforms you like to use to customize your data protection. The only limits on your customization will end up being your imagination. HashiCorp Vault’s user interface is simple for you to both use and navigate. The UI was designed to be basic enough for users to manage without forcing an organization to spend a great deal of time and resources having to train employees in its use. It might be a little confusing for employees when they start using it. However, once they have used it for a little while they will be proficient in its use. Should an organization choose to invest in training employees in the use of this UI, the required investment will be minimal. AWS Secrets Manager is an extremely user-friendly solution. It is intuitive in its design, which makes it a valuable product. However, AWS Secrets Manager lacks the level of cloud flexibility that HashiCorp Vault offers. Conclusion: While AWS Secrets Manager is a fairly competent product, we found HashiCorp Vault to be superior. HashiCorp Vault‘s greater flexibility and integration capabilities make it the more robust solution.
Read full answer
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
11%
Manufacturing Company
9%
Comms Service Provider
6%
Financial Services Firm
19%
Computer Software Company
11%
Manufacturing Company
9%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business8
Large Enterprise8
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise4
Large Enterprise16
 

Questions from the Community

Which is better - Azure Key Vault or AWS Secrets Manager?
Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governanc...
See all answers
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
See all answers
What do you like most about AWS Secrets Manager?
The most valuable feature of AWS Secrets Manager is its seamless integration with various AWS services.
See all answers
What do you like most about HashiCorp Vault?
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...
See all answers
What is your experience regarding pricing and costs for HashiCorp Vault?
The experience with pricing, setup costs, and licensing for HashiCorp Vault is generally managed by the client. They take care of all those aspects, and after onboarding HashiCorp Vault for our app...
See all answers
What needs improvement with HashiCorp Vault?
HashiCorp Vault can be improved more because it has provided only metadata and API paths. However, if it had provided more protected or secret folders, that would be helpful. Now the generation has...
See all answers
 

Comparisons

Azure Key Vault vs AWS Secrets Manager Logo
Azure Key Vault vs AWS Secrets Manager
Compared 84% of the time
1Password Business vs AWS Secrets Manager Logo
1Password Business vs AWS Secrets Manager
Compared 3% of the time
Bitwarden vs AWS Secrets Manager Logo
Bitwarden vs AWS Secrets Manager
Compared 2% of the time
Delinea Secret Server vs AWS Secrets Manager Logo
Delinea Secret Server vs AWS Secrets Manager
Compared 2% of the time
CyberArk Privileged Access Manager vs AWS Secrets Manager Logo
CyberArk Privileged Access Manager vs AWS Secrets Manager
Compared 2% of the time
More AWS Secrets Manager Competitors
Bitwarden vs HashiCorp Vault Logo
Bitwarden vs HashiCorp Vault
Compared 23% of the time
Keeper Enterprise Password Manager vs HashiCorp Vault Logo
Keeper Enterprise Password Manager vs HashiCorp Vault
Compared 11% of the time
Delinea Secret Server vs HashiCorp Vault Logo
Delinea Secret Server vs HashiCorp Vault
Compared 9% of the time
1Password Business vs HashiCorp Vault Logo
1Password Business vs HashiCorp Vault
Compared 9% of the time
CyberArk Privileged Access Manager vs HashiCorp Vault Logo
CyberArk Privileged Access Manager vs HashiCorp Vault
Compared 8% of the time
More HashiCorp Vault Competitors
 

Product Reports

Buyer's Guide
Enterprise Password Managers
January 2026
AWS Secrets Manager reportDownload AWS Secrets Manager product report
Buyer's Guide
HashiCorp Vault
January 2026
HashiCorp Vault reportDownload HashiCorp Vault product report
 

Overview

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

Amazon Web Services (AWS)

HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management. 

The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

HashiCorp Vault Features

  • Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.

  • Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.

  • Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.

  • Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

Reviews from Real Users

The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

“The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

HashiCorp
 

Sample Customers

Autodesk, Clevy, Stackery
Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
Buyer's Guide
AWS Secrets Manager vs. HashiCorp Vault
January 2026
Free Report: AWS Secrets Manager vs. HashiCorp Vault
Find out what your peers are saying about AWS Secrets Manager vs. HashiCorp Vault and other solutions. Updated: January 2026.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
See our AWS Secrets Manager vs. HashiCorp Vault report.
See our list of best Enterprise Password Managers vendors and best Secrets Management Tools vendors.

We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.