HashiCorp Vault vs. ManageEngine Key Manager Plus

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
HashiCorp Vault
Score 8.4 out of 10
N/A
HashiCorp offers Vault, an encryption tool of use in the management of secrets including credentials, passwords and other secrets, providing access control, audit trail, and support for multiple authentication methods. It is available open source, or under an enterprise license.
$0.03
ManageEngine Key Manager Plus
Score 8.0 out of 10
N/A
ManageEngine Key Manager Plus is a web-based key management solution that helps users consolidate, control, manage, monitor, and audit the entire life cycle of SSH (Secure Shell) keys and SSL (Secure Sockets Layer) certificates. It provides visibility into the SSH and SSL environments and helps administrators take total control of the keys to preempt breaches and compliance issues.N/A
Pricing
HashiCorp VaultManageEngine Key Manager Plus
Editions & Modules
Cloud - HCP Vault
$0.03/hr
Open Source
Free
Enterprise
Contact sales team
No answers on this topic
Offerings
Pricing Offerings
HashiCorp VaultManageEngine Key Manager Plus
Free Trial
NoYes
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
HashiCorp VaultManageEngine Key Manager Plus
User Ratings
HashiCorp VaultManageEngine Key Manager Plus
Likelihood to Recommend
8.0
(0 ratings)
8.0
(0 ratings)
Likelihood to Renew
10.0
(0 ratings)
-
(0 ratings)
Usability
7.0
(0 ratings)
9.0
(0 ratings)
Support Rating
6.3
(0 ratings)
9.0
(0 ratings)
User Testimonials
HashiCorp VaultManageEngine Key Manager Plus
Likelihood to Recommend
Vault is a reliable and resilient as the Key Management System. It is not for the novice user that does not have a background in information security. It requires a significant time investment into the different key engines that the solution offers to get started. It works very well once implemented and is very flexible in general.
Read full review
The tool is really good for the enterprise having major exposure to public-facing web applications and this can be used to maintain the SSL Certificate Inventory and automated alerts can be set so that SSL Certificates can be renewed before the expiry. Organizations who don't have the visibility of the SSL Certificate deployed across various and then tool can be used to identify the certificates and inventory can be prepared. This tool must be handled by Information Security Team since the private key information is confidential in nature. This tool has the capability to extract the information from various cloud instances including Azure, GCP, and AWS. I will not recommend this tool for organizations that don't have many public-facing apps and for 8 to 10 apps this can be managed manually rather than purchasing this tool.
Read full review
Pros
  • The HTTP API you use to write and read secrets is open and can be used by any application.
  • It keeps our sensitive data/credentials out of our GitLab repositories.
  • Sealing and unsealing the Vault on demand adds an additional layer of security.
Read full review
  • SSL Certificate Discover Feature.
  • User Friendly Dashboard.
  • Automated Alerts to tell about expiry of the Certificate.
  • Different User Profiles can be configured.
  • Various Reports available to download.
  • Stable Product.
Read full review
Cons
  • Documentation for the API moves slower than changes in the API itself
  • The database secret engine's API design isn't as elegant as it could be
  • No support for revocation of all secrets under one path
Read full review
  • False Positives Issues (Sometimes getting alerts for certificates that are already renewed).
  • Alerting Emails can be improved.
  • Audit Trail need to be improved.
Read full review
Likelihood to Renew
HashiCorp Vault is the best there is out there, and it has become critical to our secret management use cases. It would be difficult to find anything that would suit our needs better and that would be beneficial for us to switch over to.
Read full review
No answers on this topic
Usability
We spent a little more time than we imagined to conceptually understand how HashiCorp Vault operates, as well as how it is configured. This is not trivial, and keep in mind that you will need to take some time to get a thorough understanding of the tool. The documentation could be more helpful in this regard.
Read full review
Overall good product. The solution was able to meet our business case. It is not an expensive product as compared to other key vault solutions. Implementation is an easy and user-friendly console. We got the training on how to use the solution after it was deployed. It is widely used by many organizations. With this solution, we managed to create a centralized SSL Certificates Inventory and other details which were very difficult to extract using the manual search.
Read full review
Support Rating
Hashicorp has been very responsive to our questions and inquiries up to this point. We are currently working on them to develop a more granular permissions model within Vault. We are very close to achieving our objectives with the help of their support team. We do not seem to be in the same time zone which makes it hard for escalated issues.
Read full review
Technical Support is good and available 24/7. Licensing Policy is also good and we have taken a yearly subscription model. Integration with Digi Cert is also possible. Secure Solution for management of SSL Certificates Life Cycle. We have not faced any issue with the deployment of the product and not many bugs in the products except some false positives and false negatives ratios.
Read full review
Alternatives Considered
HashiCorp Vault integrates with a lot of tools and systems, and the documentation was pretty robust with a lot of community help. Because HashiCorp Vault is also older than other solutions, it is already well developed with a lot of features you need for storing secrets and configuration. HashiCorp Vault is also friendlier towards application build and is focused in providing security and a lot of customization for almost any use case scenario. Bitwarden is more limited to password management of enterprise accounts, but for application usage is not that great or easy to integrate. It does not scale well also. AWS Secrets Manager on the other hand is really good but more limited to AWS applications and vendor lock is problematic as well for such a critical piece of infrastructure.
Read full review
No answers on this topic
Return on Investment
  • Allowed better access control for credentials, passwords, and important keys.
  • After we started using HashiCorp Vault, we were able to base our environment 100% as code.
  • SSH access control that is possible using HashiCorp Vault adds an extra level of security in environments where external remote access is required.
Read full review
  • No Business Impact as SSL Certificates renewed on time.
  • Centralized Control over the SSL Certificate Exposure in the environment.
  • Security of Private Keys.
  • Able to discover hidden SSL Certificates.
Read full review
ScreenShots

HashiCorp Vault Screenshots

Screenshot of Example of writing a secret to Vault. Secrets are always encrypted and written to backend storage. To learn more: https://developer.hashicorp.com/vault/tutorials/getting-started/getting-started-first-secretScreenshot of Secrets menu to manage integrated secrets engines. Secrets Engines are components which store, generate, or encrypt data and are enabled at a path in Vault. To learn more: https://developer.hashicorp.com/vault/tutorials/getting-started/getting-started-uiScreenshot of Vault identity has support for groups. A group can contain multiple entities as its members. A group can also have subgroups. To learn more: https://developer.hashicorp.com/vault/docs/concepts/identityScreenshot of HCP Vault provides all of the power and security of Vault, without the complexity and overhead of managing it yourself. To learn more:  https://cloud.hashicorp.com/products/vaultScreenshot of View entity client and non-entity client counts.Screenshot of MFA is built on top of the Identity system of Vault. To learn more: https://developer.hashicorp.com/vault/docs/auth/login-mfa

ManageEngine Key Manager Plus Screenshots

Screenshot of Screenshot of Screenshot of Screenshot of Screenshot of