Self-Hosted Deployment
Deploy CorpAI infrastructure to your AWS account.
- Data residency: Documents, conversations, and credentials stored in your AWS
- Compliance: HIPAA, SOC 2, GDPR compatible with your existing AWS controls
- Network isolation: Private VPC, no inbound internet access
Provisioned Resources
| Resource | Purpose |
|---|---|
| VPC | Isolated network (2 public, 2 private subnets) |
| NAT Gateway | Outbound internet access for private subnets |
| VPC Endpoints | Private access to S3, ECR, STS, Bedrock |
| EKS | Data Plane API and MCP servers |
| OIDC Provider | IRSA for pod-level IAM permissions |
| IAM Roles | Service-specific permissions (Data Plane API, Bedrock KB) |
| RDS PostgreSQL | Conversations, policies, audit logs |
| ElastiCache Valkey | Caching, rate limiting |
| Bedrock + OpenSearch | AI (Gemma 3 12B) and vector search |
| S3 | Document storage |
| Secrets Manager | MCP credentials, RDS credentials, JWT keys |
Deployment Steps
- Provision infrastructure (6 steps, ~45 min total)
- Configure cross-account IAM role
- Deploy Data Plane API
- Add credentials for your integrations
- Deploy MCP servers
See Setup Guide for step-by-step instructions.
Next
Last updated on