diff --git a/hosts/penduick/configuration.nix b/hosts/penduick/configuration.nix
index 21862f2..865887b 100644
--- a/hosts/penduick/configuration.nix
+++ b/hosts/penduick/configuration.nix
@@ -29,11 +29,16 @@ in {
     PasswordAuthentication = true;
   };
 
-  users.users.dunoz = {
-    isNormalUser = true;
-    extraGroups = [ "wheel" "networkmanager" ];
-    initialPassword = "temp";
-    shell = pkgs.zsh;
+  age.identityPaths = [ "/etc/agenix/penduick.key" ];
+  age.secrets."dunoz-password-penduick".file = ../../secrets/dunoz-password-penduick.age;
+  users= {
+    mutableUsers = false ;
+    users.dunoz = {
+      isNormalUser = true;
+      extraGroups = [ "wheel" "networkmanager" ];
+      hashedPasswordFile = config.age.secrets."dunoz-password-penduick".path;
+      shell = pkgs.zsh;
+    };
   };
 
   home-manager = {
@@ -44,6 +49,7 @@ in {
   environment.systemPackages = with pkgs; [
     git htop wget curl
     neovim
+    age ssh-to-age
   ];
 
 
diff --git a/secrets/dunoz-password-penduick.age b/secrets/dunoz-password-penduick.age
new file mode 100644
index 0000000..cf0ffed
Binary files /dev/null and b/secrets/dunoz-password-penduick.age differ
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 6f16f6f..24d20cf 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -1,8 +1,10 @@
 let
   serveur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPRVxB7usThGHf8cuSPE4sjdqSaPNlwWAZPEo1wUgHz6 root@terre-neuvas";
   admin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAxranFaz3jRfvYE2M6FvRUWjzviIWjWd1mucgKeuSK2 lomig@nixos";
+  penduick = "age1rnyey8shjxyaq43dzlnhtfkcm3ra4hy3ygh6c46w4xmr7fe9fe3s00nh2r";
 in
 {
   "goaccess-password.age".publicKeys = [ serveur admin ];
+  "dunoz-password-penduick.age".publicKeys = [ penduick ];
 }