diff --git a/machines/compute01/k-radius/module.nix b/machines/compute01/k-radius/module.nix
index 6275584..c726617 100644
--- a/machines/compute01/k-radius/module.nix
+++ b/machines/compute01/k-radius/module.nix
@@ -131,7 +131,7 @@ in
                 name:
                 { secret, ipaddr }:
                 ''
-                  cat <<EOF >> ${cfg.configDir}/client.conf
+                  cat <<EOF >> ${cfg.configDir}/clients.conf
                   client ${name} {
                       ipaddr = ${ipaddr}
                       secret = $(cat "${secret}")
@@ -177,7 +177,7 @@ in
       ];
 
       serviceConfig = {
-        ExecStart = "${cfg.freeradius}/bin/radiusd -f -d ${cfg.configDir} -l stdout";
+        ExecStart = "${cfg.freeradius}/bin/radiusd -X -f -d ${cfg.configDir} -l stdout";
         ExecReload = [
           "${cfg.freeradius}/bin/radiusd -C -d ${cfg.configDir} -l stdout"
           "${pkgs.coreutils}/bin/kill -HUP $MAINPID"
@@ -189,6 +189,7 @@ in
         RestartSec = 2;
         LogsDirectory = "radius";
         StateDirectory = "radius";
+        RuntimeDirectory = "radius";
         Environment = [
           "KANIDM_RLM_CONFIG=/var/lib/radius/kanidm.toml"
           "PYTHONPATH=${rlm_python.pythonPath}"
diff --git a/machines/compute01/secrets/radius-auth_token_file b/machines/compute01/secrets/radius-auth_token_file
index c162a63..489a0cf 100644
Binary files a/machines/compute01/secrets/radius-auth_token_file and b/machines/compute01/secrets/radius-auth_token_file differ