Skip to content
Z Zendikt
H
Secrets Management Software · Rank #1 of 10

HashiCorp Vault review and pricing

De facto enterprise secrets backbone, now an IBM business with BSL license baggage.

By HashiCorp (IBM) · Founded 2012 · San Francisco, CA · public

HashiCorp Vault is the most deployed enterprise secrets management platform, founded 2012 and the de facto open-source standard for secrets, PKI, and dynamic credentials through 2023. The Aug 2023 license switch from MPL to Business Source License (BSL) sparked an immediate community backlash, prompting the OpenTofu fork (Terraform) and the OpenBao fork (Vault) under Linux Foundation governance. IBM closed its acquisition of HashiCorp on Feb 27, 2025 for about $6.4B, and post-IBM product strategy is still being clarified through 2026: integration with IBM Cloud and Red Hat is the stated direction, but enterprise customers report a wait-and-see posture on roadmap velocity. Vault remains the broadest and deepest commercial secrets platform; the buying question is whether you trust the post-IBM trajectory and the BSL terms.

Visit HashiCorp Vault Vendor pricing Compare to Doppler
Best for

Regulated enterprises (1,000-50,000+ employees) needing the deepest secrets, PKI, and dynamic-credentials platform, with budget for operational expertise.

Worst for

Greenfield engineering teams wanting modern developer ergonomics (Doppler or Infisical win), or organizations philosophically opposed to BSL licensing (OpenBao or pure-OSS alternatives).

Vendor Trust Score

Is HashiCorp Vault a trustworthy vendor?

6.3/10
Mixed
Pricing transparency
Published rates; no hidden fees
5.5
Contract fairness
Reasonable terms; no auto-renew traps
6.0
Incident response
How they handle outages and breaches
8.0
Post-acquisition behavior
Customer treatment after M&A or PE
5.5
Executive stability
Leadership churn over 24 months
6.0
Roadmap honesty
Public commitments held
6.5
Trust signal log
  • 2023-08-10
    BSL license switch announced
    HashiCorp relicensed Terraform, Vault, Consul, Nomad, Packer, Boundary, and Waypoint from MPL to Business Source License. Community backlash sparked OpenTofu (Terraform) fork and later OpenBao (Vault) fork under Linux Foundation governance.
  • 2024-04-24
    IBM announced acquisition of HashiCorp at $6.4B
  • 2025-02-27
    IBM closed HashiCorp acquisition
    Acquisition closed for about $6.4B. Post-IBM product strategy still being clarified through 2026; integration with IBM Cloud and Red Hat is stated direction.
  • 2024-06-20
    OpenBao reached LF Sandbox status
    OpenBao (Vault fork) accepted as a Linux Foundation Sandbox project, formalizing a community alternative to BSL Vault.
  • 2025-09-15
    Post-IBM roadmap wait-and-see posture reported
    Enterprise customers report cautious posture on new commitments pending clearer post-IBM roadmap velocity signals.
Vendor Trust is scored independently of product quality. A great product from an unfair vendor still earns a low trust score.
Review Intelligence

What 1,320 reviews actually say

Synthesized from G2, Capterra, Reddit, Trustpilot. Patterns >15% prevalence shown.

Last synthesized
2026-04-29

Praise patterns

  • Deepest secrets, PKI, and dynamic-credentials platform
    87%
  • Largest community and integration ecosystem
    78%
  • Strong Kubernetes integration via Vault Agent and Operator
    64%
  • Audit trails meet regulated-industry expectations
    51%

Complaint patterns

  • BSL license switch fractured open-source trust
    71%
  • Post-IBM product clarity remains an open question
    47%
  • Operational complexity for storage, replication, unsealing
    41%
  • Enterprise pricing opaque; deal sizes larger than initial scoping
    38%
Sentiment trend (6 months)
75/100 +1 pts
12
01
02
03
04
05
Patterns are extracted from review corpus and human-verified. We surface trends, not anecdotes.
Verified Pricing

What buyers actually pay

71 anonymized deal disclosures · last updated 2026-05-01

Contribute your deal price
Company size Median annual
500-2,000 employees $96,000
2,000-10,000 employees $280,000
10,000+ employees $720,000
Verified pricing is crowdsourced from buyers under anonymity guarantees. Vendor-listed prices are validated against actual deals quarterly.
Compliance & Security

Auto-verified certifications

Verified 2026-05-01
SOC 2 Type II
ISO 27001
HIPAA
GDPR
CCPA
PCI DSS
FedRAMP Authorized

Editorial: Strengths

  • Deepest feature set in the category (KV, dynamic credentials, PKI, transit, transform, database secrets engines)
  • Largest community and integration ecosystem of any secrets platform
  • Strong dynamic-credentials story across AWS, Azure, GCP, databases, Kubernetes
  • Vault Enterprise adds performance replication, DR, HSM auto-unseal, namespaces
  • Mature Kubernetes integration via Vault Agent and Secrets Operator
  • Auditor-grade evidence trails for regulated industries

Editorial: Weaknesses

  • Aug 2023 BSL license switch fractured open-source community trust
  • OpenBao fork exists as an OSS-compatible alternative and is gaining adoption
  • Feb 2025 IBM close leaves post-acquisition product strategy unclarified
  • Enterprise pricing opaque; deal sizes routinely larger than initial scoping suggested
  • Operational complexity is real (storage, unsealing, replication, namespaces all need expertise)
  • Developer ergonomics weaker than Doppler or Infisical for greenfield teams

Key features & integrations

  • +Key-Value (KV) v1 and v2 static secrets engines
  • +Dynamic credentials for AWS, Azure, GCP, databases, Kubernetes, SSH
  • +PKI secrets engine for full certificate lifecycle
  • +Transit secrets engine for encryption-as-a-service
  • +Transform secrets engine for format-preserving encryption and tokenization
  • +Identity-based access policies with namespaces (Enterprise)
  • +Performance and DR replication (Enterprise)
  • +HSM auto-unseal and FIPS 140-2 build (Enterprise)
  • +Audit devices for full request logging
  • +Vault Agent and Secrets Operator for Kubernetes-native workflows
450+ integrations
KubernetesAWSAzureGCPTerraformConsulNomadServiceNowSplunkDatadogGitHub ActionsGitLab CI
Geography supported
Global; strongest in US, EU, APAC
Best fit
500-100,000+ employees · Regulated enterprises and platform teams with operational expertise
Editorial deep-dive

Read our full ranking of Secrets Management Software

HashiCorp Vault ranks #1 in our editorial review of 10 secrets management software platforms. The deep-dive covers methodology, comparison tables, decision matrix, migration scoring, and FAQs.

Read the full ranking

Closest alternatives in Secrets Management Software

#2
Doppler
Developer-first secrets platform for cloud-native teams.
★ 4.7 partial
#3
1Password Secrets Automation
Secrets automation on top of the broader 1Password Business platform.
★ 4.7 partial
#4
AWS Secrets Manager
Native AWS secrets service for AWS-anchored estates.
★ 4.5 public
Help the next buyer

Contribute your verified deal price

Pricing in B2B software is opaque because vendors want it that way. Verified buyer prices fix that, anonymously. Share what you actually paid for HashiCorp Vault; we’ll add it to the verified pricing dataset on this page (with company size band only, no identifying details).

Submit anonymously