diff --git a/configuration.nix b/configuration.nix
index fd3955f..3a6f0e4 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -100,7 +100,8 @@
   # Specify secrets
   age = {
     secrets.wireguard.file = secrets/wireguard.age;
-    sshKeyPaths = ["/home/coolneng/.ssh/id_ed25519"];
+    secrets.syncthing.file = secrets/syncthing.age;
+    sshKeyPaths = [ "/home/coolneng/.ssh/id_ed25519" ];
   };
 
   # Import other configuration modules
diff --git a/modules/datasync.nix b/modules/datasync.nix
index d533f16..6ab5127 100644
--- a/modules/datasync.nix
+++ b/modules/datasync.nix
@@ -16,6 +16,7 @@
     enable = true;
     user = "coolneng";
     dataDir = "/home/coolneng";
+    key = config.age.secrets.syncthing.path;
     devices.zion = {
       id = "FLI2RS7-GNI5PDM-SQRNF7P-YJIOXJ7-46FRPEI-NRLQGBC-HXRWG7O-RKOVLAF";
       addresses = [ "tcp://192.168.13.2:22000" ];
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 7e3d289..29cb5d7 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -1,4 +1,7 @@
 let
   coolneng =
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC57m1j/G6iQyi2EpU3nj3+df5Z4PL/XbiOmDcqA7ODg";
-in { "wireguard.age".publicKeys = [ coolneng ]; }
+in {
+  "wireguard.age".publicKeys = [ coolneng ];
+  "syncthing.age".publicKeys = [ coolneng ];
+}
diff --git a/secrets/syncthing.age b/secrets/syncthing.age
new file mode 100644
index 0000000..199800e
Binary files /dev/null and b/secrets/syncthing.age differ