Home
DevOps
Build, Test, Deploy
Secrets Management

AWS Secrets Manager vs Vault

Need advice about which tool to choose?Ask the StackShare community!

AWS Secrets Manager
102
121
+ 1
2
Vault
620
640
+ 1
68
Add tool

AWS Secrets Manager vs Vault: What are the differences?

Developers describe AWS Secrets Manager as "Store, Distribute, and Rotate Credentials Securely". AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle. On the other hand, Vault is detailed as "Secure, store, and tightly control access to tokens, passwords, certificates, API keys, and other secrets in modern computing". Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

AWS Secrets Manager and Vault belong to "Secrets Management" category of the tech stack.

Vault is an open source tool with 12.8K GitHub stars and 1.93K GitHub forks. Here's a link to Vault's open source repository on GitHub.

Get Advice from developers at your company using Private StackShare. Sign up for Private StackShare.
Learn More
Pros of AWS Secrets Manager
Pros of Vault
  • 2
    Managed Service
  • 16
    Secure
  • 11
    Very easy to set up and use
  • 11
    Variety of Secret Backends
  • 8
    Dynamic secret generation
  • 5
    AuditLog
  • 3
    Leasing and Renewal
  • 3
    Privilege Access Management
  • 2
    Open Source
  • 2
    Consol integration
  • 2
    Handles secret sprawl
  • 2
    Variety of Auth Backends
  • 2
    Easy to integrate with
  • 1
    Multicloud

Sign up to add or upvote prosMake informed product decisions

- No public GitHub repository available -

What is AWS Secrets Manager?

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

What is Vault?

Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

Need advice about which tool to choose?Ask the StackShare community!

What companies use AWS Secrets Manager?
What companies use Vault?
See which teams inside your own company are using AWS Secrets Manager or Vault.
Sign up for Private StackShareLearn More

Sign up to get full access to all the companiesMake informed product decisions

What tools integrate with AWS Secrets Manager?
What tools integrate with Vault?

Sign up to get full access to all the tool integrationsMake informed product decisions

Blog Posts

Transforming the Management of Application Configurations & Se...
Dec 10 2019 at 8:35AM

HashiCorp

JavaJenkinsGitLab+7
5
1243
What are some alternatives to AWS Secrets Manager and Vault?
AWS Key Management Service
AWS Key Management Service (KMS) is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data, and uses Hardware Security Modules (HSMs) to protect the security of your keys. AWS Key Management Service is integrated with other AWS services including Amazon EBS, Amazon S3, and Amazon Redshift. AWS Key Management Service is also integrated with AWS CloudTrail to provide you with logs of all key usage to help meet your regulatory and compliance needs.
CyberArk
It is the only security software company focused on eliminating cyber threats using insider privileges to attack the heart of the enterprise.
Azure Key Vault
Secure key management is essential to protect data in the cloud. Use Azure Key Vault to encrypt keys and small secrets like passwords that use keys stored in hardware security modules (HSMs). For more assurance, import or generate keys in HSMs, and Microsoft processes your keys in FIPS 140-2 Level 2 validated HSMs (hardware and firmware). With Key Vault, Microsoft doesn’t see or extract your keys. Monitor and audit your key use with Azure logging—pipe logs into Azure HDInsight or your security information and event management (SIEM) solution for more analysis and threat detection.
Docker Secrets
A container native solution that strengthens the Trusted Delivery component of container security by integrating secret distribution directly into the container platform.
Doppler
Stop struggling with scattered environment variables, hacking together home-brewed tools, and avoiding access controls. Keep your team and servers in sync with Doppler.
See all alternatives

Related Comparisons

Keywhiz vs VaultDocker Secrets vs Torus CLI vs VaultConfidant vs Torus CLI vs VaultAWS Secrets Manager vs KeywhizTorus CLI vs Vault

Trending Comparisons

Django vs Laravel vs Node.jsBootstrap vs Foundation vs Material-UINode.js vs Spring BootFlyway vs LiquibaseAWS CodeCommit vs Bitbucket vs GitHub

Top Comparisons

Bitbucket vs GitHub vs GitLabBootstrap vs MaterializeHipChat vs Mattermost vs SlackPostman vs Swagger UI