Self‑hosting a critical wallet stack should not feel like assembling flat‑pack furniture without the instructions. Yet many technology teams still assume that self hosting demands many resources, unfamiliar infrastructure tools, and a small army of engineers to maintain. Those concerns are understandable, yet Cordial Treasury already challenges them. A standard deployment can be live in a few hours and, with extra configuration, integrated into identity providers, KYT tools, and middle‑ or back‑office systems within a couple of weeks. Even so, some teams want more convenience when hosting their setup.
One Click Deployment removes the last barrier. It turns installation into a single guided step. A template launches a hardened virtual machine on your preferred cloud platform. Once the machine is running, administrators execute a short command that completes the set‑up. A few minutes later Cordial Treasury is ready for service. Updates are just as simple, because the application can validate and apply only signed images when the user approves them. You keep one hundred per cent control over keys, policies, audit logs, and yet enjoy the convenience usually associated with a managed SaaS wallet.
The Problem One Click Deployment Solves
Engineering leaders who value self‑custody often face a dilemma. They want the security of running wallet software inside their own environment, yet may not want to manage servers locally or they may want to test a rapid proof of concept. When installation looks complicated, projects slip down the priority list or move to a vendor‑hosted alternative which introduces a lot of trust assumptions. The immediate pain points are clear.
First, cloud environments require careful preparation. Teams must provision compute instances, configure firewalls, establish identity and access controls, and make sure storage is encrypted. Each task is manageable on its own, but together they create a backlog that pushes delivery dates weeks into the future.
Secondly, maintenance anxiety follows close behind. Even when a team completes the initial rollout, it still needs a predictable method for applying patches and upgrades. Manual image pulls and bespoke scripts introduce the risk of unsigned or untested code entering production. Security officers worry that the next update could slip past review and compromise the entire custody stack.
How One Click Deployment Works
The new template automates the heavy lifting. It spins up a hardened virtual machine in your cloud platform of choice. Upon activation, your nodes will be connected via integrated VPN with only the needed ports exposed. One port for end-to-end encrypted communication for the MPC signing. Also one port for the nodes to gossip new transactions with each other and come to a consensus on state changes (transactions, new user, a change of policy etc).
When the nodes first install, they exchange public keys with each other which become the basis for the end-to-end encrypted channels and byzantine fault tolerant consensus. These public keys can be easily verified to prove you are co-hosting with the right entity.
Our setup includes telemetry and automated health checks so you don’t have to worry about it. If you want to integrate telemetry and health monitoring with your own stack, you can do so easily as everything is OpenTelemetry compatible. You would only need to define a few environment variables.
Encrypted backups are taken automatically and stored in a robust fashion. You need only take responsibility for any decryption keys.
With the deployment ready, you can start to invite users, as well as create roles, access rules, and transfer rules. This makes up the governance and control plane of your deployment - we have a variety of blueprints to help with that, or simply create what suits your business best. All that remains is to fund your wallets, leverage our CEX integrations or staking capabilities, and your internal operations teams can start conducting their regular operations and workflows.
One Click Deployment is cloud agnostic by design. The same installation package can be adapted to other platforms with minimal changes, because all logic lives inside the bootstrap script and template metadata. Whether the target environment is AWS, Azure, or an on‑premises OpenShift cluster, the user experience remains the same. You can even build the VM image yourself.
The Update Experience
Keeping software current matters as much as installing it. With One Click Deployment, administrators may approve an update (via UI or CLI) when they are ready to upgrade. As with any sensitive change, it must pass policy on all Treasury nodes. Once the request to update passes, Treasury will verify that the new image is signed and valid, then quickly apply the update in place. Unsigned or tampered images never make it past validation, and the node remains online throughout the process. Teams regain the steady cadence of a managed SaaS product while retaining full control of the execution environment.
Benefits For The People Who Need Them Most
DevOps engineers gain immediate relief from infrastructure complexity, because all they need to do is install a single VM with no extra configuration. By default, telemetry, health monitoring, updates, and encrypted backups are all handled securely. The VM can be incredibly isolated and closed off to the rest of the organization.
Security and compliance officers benefit from a transparent installation path. Every image is signed, and every request signed and verified to pass policies. Every change in the system is recorded not only in telemetry, but also in a robust audit log. The organisation can prove, at audit time, that no unsigned code or unsigned request has ever touched production.
Project managers now have an even shorter timetable. A manual deployment already took only a few hours for a basic set‑up and a couple of weeks for fuller integrations. One Click Deployment reduces the initial step to minutes, so proof of value can happen the same afternoon.
Finally, end users enjoy the peace of mind that comes with running software in their own environment. Key generation and storage never leave the corporate perimeter, data stays within the chosen region, and policies remain strictly under local governance. At the same time, updates arrive with the ease and predictability of a cloud service. Users get all of the security benefits of MPC with little-to-none of the extra complexity or SaaS vendor pitfalls. It is a genuine win‑win situation and a true reflection of what self custody should entail.
A Glimpse At What Comes Next
The first release focuses on AWS and Google Cloud Platform. Work is under way to provide ready‑made templates for Oracle and Azure. We’ll also open source the repository to build the image so users can build their own. Cordial Treasury will continue to expand platform coverage, but the guiding principle will not change. Wherever an institution chooses to run its wallet infrastructure, the installation process will be quick, secure, and repeatable.
Try One Click Deployment Today
Documentation is live, complete with step‑by‑step instructions and best‑practice guidance for policy configuration. Our solutions team can provision a 1-click testnet deployment or sandbox in your preferred region and walk you through a live installation from first click to running wallet node.
Self‑hosting no longer demands compromises. One Click Deployment lets you keep the wallet stack 100% under your control while enjoying the convenience of a cloud service. Control and convenience now travel together.
Book a demo to see the process in real time and judge the speed for yourself.
