Parameter; Hashicorp; 1Password
Supported types of secrets; SSH keys, TLS keys, Docker credentials, service accounts tokens - OpenShift\Kubernetes\Nomad, login pass pairs, services and API certificates, env variables; Docker credentials, service accounts tokens - Kubernetes, login pass pairs, services and API tokens;
Supported types of applications; Cloud - AWS, GCP, Azure, Alibaba Cloud, databases - Oracle, MS SQL, MySQL, CI \ CD - GitLab CI, TeamCity, Container Orchestration - Kubernetes, OpenShift, Swarm, IaaC - Ansible, Terraform, Helm; Cloud - AWS, GCP, Azure, Container Orchestration - Kubernetes, IaaC - Ansible, Terraform;
Strong authentication; OAuth, OpenID Connect compatible; Via Duo
Dynamic Secrets and Secrets rotation; Yes; No
ACL; Yes; Yes
Secrets wrapping for one-time contractors access; Yes; No
Management interfaces; API, CLI, Web; API, CLI, Web
High availability; Yes; Yes
Logging of access to secrets; Yes, it can't work if there is no audit device enabled; Yes
Tokenisation for sensitive data; Yes; No
Editions; Open Source, Enterprise + Modules; Business, Enterprise
Delivery type; On-Premise, IaaS; SaaS
Availability on cloud marketplaces; AWS, Azure, Google Cloud; No