diff --git a/hosts/dunamis/services.nix b/hosts/dunamis/services.nix
index a17583b..7def073 100644
--- a/hosts/dunamis/services.nix
+++ b/hosts/dunamis/services.nix
@@ -5,6 +5,7 @@
     fwupd.enable = true;
     openssh.enable = true;
     syncthing.openDefaultPorts = true;
+    userborn.enable = true;
     dnscrypt-proxy2 = {
       enable = true;
       settings = {
diff --git a/hosts/dunamis/users.nix b/hosts/dunamis/users.nix
index 2f87dda..5da6498 100644
--- a/hosts/dunamis/users.nix
+++ b/hosts/dunamis/users.nix
@@ -6,6 +6,7 @@
 }: let
   inherit (config.sops) secrets;
   inherit (inputs) mysecrets;
+  sshKeys = f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub";
 in {
   nix.settings.trusted-users = ["user" "nix-ssh"];
   users.mutableUsers = false;
@@ -15,7 +16,7 @@ in {
       extraGroups = ["wheel" "video" "libvirtd" "dialout"];
       isNormalUser = true;
       shell = pkgs.fish;
-      openssh.authorizedKeys.keyFiles = map (f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub") [
+      openssh.authorizedKeys.keyFiles = map sshKeys [
         "dunamis"
         "eldrid"
         "sarien"