Skip to main content
When your enterprise contract is finalized, Cartesia provisions the following resources for your account. All provisioned resources are available for download from the on-prem portal.
The on-prem portal is only accessible under the organization that has on-prem enabled. If you don’t see it, switch to that organization in the account switcher.

Service Account

A service account is created for your account, this service account has the following accesses:
  • Access to a private artifact registry, which is used to host cartesia provided container images.
  • Access to a common storage bucket: gs://cartesia-onprem containing the deployment configurations.
  • Access to two private storage buckets used for hosting customer specific artifacts: gs://cartesia-{name} (production) and gs://dev-cartesia-{name} (dev).
Download the JSON key for this service account from the on-prem portal. Activate the service account before accessing resources hosted on GCloud:

Customer Artifact Buckets

Two customer-specific buckets host voice migrations etc that your self-hosted deployment consumes at runtime:
  • gs://cartesia-{name} — production artifacts
  • gs://dev-cartesia-{name} — dev artifacts, for testing voices and pronunciation dictionaries before adding them to production
Both buckets share the same layout:
The API server syncs from migrations/v2/migrations/. Files land in migrations/v2/migrations/ when you call POST /onprem/add-voices or POST /onprem/add-pdict against the Cartesia cloud API. Pass dev_bucket: true to either endpoint to target the dev bucket. See Managing Artifacts for the migration APIs and hot-reload behavior.

Deployment Configurations

The cartesia-onprem bucket contains versioned repository cartesia-kube which holds all of our deployment configurations.
Download and verify the latest release:
Once extracted, cartesia-kube contains everything needed for all deployment methods:

Configuration Files

Each deployment method has its own configuration file inside cartesia-kube. Copy the .example file, fill in your values, and reference it during deployment.

Container Registry

Images are hosted at us-docker.pkg.dev/cartesia-external/self-serve and tagged with a release tag (e.g. sonic-20251118). The full image reference format is:

Images

NATS uses a public image and does not need to be pulled from the Cartesia registry.

Listing Available Tags

List available image tags sorted by most recent:
Replace cartesia-sonic-api with any image name from the table above. The ~ prefix sorts in descending order, showing the latest tags first.

Mirroring to a Private Registry

For air-gapped or network-restricted environments, mirror images to your own registry before deployment. Authenticate Docker with the service account:
Pull, retag, and push each image. For example:
Repeat for each image in the table above. Then set infra.imageRegistry (Helm) to your private registry URL.