diff --git a/hosts/cube.nix b/hosts/cube.nix
index d218c91..cd22224 100644
--- a/hosts/cube.nix
+++ b/hosts/cube.nix
@@ -65,6 +65,7 @@
   };
   services.tailscale = {
     enable = true;
+    authKeyFile = config.sops.secrets.tailscale_auth_key.path;
   };
 
   # Configure keymap in X11
@@ -74,6 +75,9 @@
   };
 
   # sops.defaultSopsFile = "/home/muhh/nix-config/secrets/secrets.yaml";
+  sops.defaultSopsFile = ../secrets/secrets.yaml;
+  sops.age.keyFile = "/home/muhh/.config/sops/age/keys.txt";
+  sops.secrets.tailscale_auth_key = {};
   # Define a user account. Don't forget to set a password with ‘passwd’.
   users.users.muhh = {
     isNormalUser = true;
diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml
index 5d3e946..55bb63e 100644
--- a/secrets/secrets.yaml
+++ b/secrets/secrets.yaml
@@ -1,4 +1,5 @@
 just_a_test: ENC[AES256_GCM,data:HDhSG6BejOadBaeW,iv:idSJWRevqi4h/gaTREOt5tGfamRcxSUSmaelgyZUmu0=,tag:jo5lugFHpdjGeo/RtN86DA==,type:str]
+tailscale_auth_key: ENC[AES256_GCM,data:1zT4rp8bxLLllmSPzC/n+Kg4m//zVynXdX8JnyO5G6mHdUrl46yYuWeyx4HNSRJmBicjVCvLMSnNeVMktg==,iv:cyInU7JNrTAnYtgF5e9jt+WKvNrumaWmRofr7++JQWA=,tag:ztKvGc1t8qeFKMbSbaq5Tw==,type:str]
 mail:
     privat:
         address: ENC[AES256_GCM,data:MdODBjT/vGmoZidXYppWX0EN,iv:Ai2YVodb/vOEyCK2spnH1vwPJrdvqIHM40ZGhALHq8A=,tag:ge1dIDEgiSYVJGNwuq+qKw==,type:str]
@@ -32,8 +33,8 @@ sops:
             SEFxb2UwbDFiSG5QdzVWRk02b3lIZDQKYF4Vv3FwvKv3uwACRXb/jwD6Q5rh39Yu
             w7J86gsX7Yh9Wm65y+CW1JE8EN72mhBbYwve3lK8twDjxmLhYOMjIg==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2024-04-11T15:20:09Z"
-    mac: ENC[AES256_GCM,data:k6sIben6qmbR4vdHKjbPXfbycAoJC4nDwkb5c8EF1tBCyPM294XUK9DJ8MrEtijB7snp6q5hbFOxeYm4saTdUCmIA0OJi09Gto+mKbPn4oUWu1IGOqphe+71JBsdC5VK0X7C/6AskMpGHTjVFzEMSCNG1QlWwqjbj+nooMxT5X4=,iv:Mw3mrFx/CAmuCplqVcXiUDBEeb0bqK0Y4kTCZxMise8=,tag:seTx8hAi/8oGRCwpv9Qdug==,type:str]
+    lastmodified: "2024-05-19T16:46:00Z"
+    mac: ENC[AES256_GCM,data:xEOM5qqtGEeCmOi+z+MdZ3h4jLjj9aLn6EFGmvHkLsZCG4DWCc7KTaSOTyTVRnpsL/Nsuhqj88QNaM+ekBPA3120C64IKM6J/ZEfOriLfrmL8uzwMXPPqTMkCDs3ALNNontMl/zUL0LYGJ5bcraIQr0DBaup0DuRD5zcGVjUUCs=,iv:2/WrjzoKNCTfwogz0ITC+FeSg/gPCTTR1s+OtIJ3Esc=,tag:flAkHZ9+jIsEsQXChCc0vQ==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.8.1