diff --git a/hosts/backwards/modules/syncthing/default.nix b/hosts/backwards/modules/syncthing/default.nix
index 177406c..8dbbb58 100644
--- a/hosts/backwards/modules/syncthing/default.nix
+++ b/hosts/backwards/modules/syncthing/default.nix
@@ -1,12 +1,22 @@
-{ ... }:
+{ config, ... }:
 {
   services.syncthing = {
     enable = true;
     openDefaultPorts = true;
 
+    cert = config.age.secrets.syncthing-cert.path;
+    key = config.age.secrets.syncthing-key.path;
+
     user = "alex";
     group = "users";
 
     dataDir = "/home/alex/sync";
   };
+
+  age = {
+    secrets = {
+      "syncthing-cert".file = ../../../../secrets/backwards/syncthing-cert.age;
+      "syncthing-key".file = ../../../../secrets/backwards/syncthing-key.age;
+    };
+  };
 }
diff --git a/secrets/backwards/syncthing-cert.age b/secrets/backwards/syncthing-cert.age
new file mode 100644
index 0000000..2808be1
Binary files /dev/null and b/secrets/backwards/syncthing-cert.age differ
diff --git a/secrets/backwards/syncthing-key.age b/secrets/backwards/syncthing-key.age
new file mode 100644
index 0000000..9b23e85
Binary files /dev/null and b/secrets/backwards/syncthing-key.age differ
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index bda13c2..db58d11 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -31,6 +31,8 @@ in {
 
   "backwards/root.backwards.age".publicKeys = [ backwards alex ];
   "backwards/root.backwards.pub.age".publicKeys = [ backwards alex ];
+  "backwards/syncthing-cert.age".publicKeys = [ backwards alex ];
+  "backwards/syncthing-key.age".publicKeys = [ backwards alex ];
   "backwards/alex.backwards-codeberg.org.age".publicKeys = [ backwards alex ];
   "backwards/alex.backwards-codeberg.org.pub.age".publicKeys = [ backwards alex ];
   "backwards/wpa_supplicant.conf.age".publicKeys = [ backwards alex ];