Whether your vault solution is Azure key Vault or Hashicorp's Vault or Google's Key Management and Secrets Management, all vaults must support these features.

  1. Vault keys  and Vault secrets -  expiration date and key rotations - configurable? Automatic?
  2. Vaults purge protection features?  Key Versioning and retrieval features?
  3. SSO Capabilities, Short Term Access Tokens, Access Controls
  4. Potential HSM Integrations? (for possible future need)