diff --git a/hosts/server/secrets.nix b/hosts/server/secrets.nix
index 33c06bd..dcbc6a1 100644
--- a/hosts/server/secrets.nix
+++ b/hosts/server/secrets.nix
@@ -18,10 +18,31 @@
     mode  = "0400";
   };
 
-  age.secrets."kanidm-pass" = {
-    file = ../../secrets/mailjet-pass.age;
-    owner = "root";
-    group = "root";
+  age.secrets."nextcloud-admin-pass" = {
+    file = ../../secrets/nextcloud-admin-pass.age;
+    owner = "nextcloud";
+    group = "nextcloud";
+    mode  = "0400";
+  };
+
+  age.secrets."nextcloud-database" = {
+    file = ../../secrets/nextcloud-database.age;
+    owner = "nextcloud";
+    group = "nextcloud";
+    mode  = "0400";
+  };
+
+  age.secrets."kanidm-admin" = {
+    file = ../../secrets/kandim-admin.age;
+    owner = "kanidm";
+    group = "kanidm";
+    mode  = "0400";
+  };
+
+  age.secrets."kanidm-idmAdmin" = {
+    file = ../../secrets/kandim-idmAdmin.age;
+    owner = "kanidm";
+    group = "kanidm";
     mode  = "0400";
   };