diff --git a/flake.nix b/flake.nix
index d929025..2811507 100644
--- a/flake.nix
+++ b/flake.nix
@@ -96,6 +96,7 @@
         modules = [
           nixos-hardware.nixosModules.framework-11th-gen-intel
           auto-cpufreq.nixosModules.default
+          lanzaboote.nixosModules.lanzaboote
           ./hosts/julius-framework
           ./users/julius/nixos.nix
 
diff --git a/hosts/julius-framework/default.nix b/hosts/julius-framework/default.nix
index 1719e36..9292f2d 100644
--- a/hosts/julius-framework/default.nix
+++ b/hosts/julius-framework/default.nix
@@ -75,10 +75,13 @@
       loader = {
           efi.canTouchEfiVariables = true;
           systemd-boot = {
-	      enable = true;
-              editor = false;
+	      enable = false; # Enabled by lanzaboote
           };
       };
+      lanzaboote = {
+        enable = true;
+        pkiBundle = "/var/lib/sbctl";
+      };
       initrd = {
         systemd.enable = true;
         luks.devices = {