diff --git a/hosts/busch-main-docker/default.nix b/hosts/busch-main-docker/default.nix
index 21d1cc9..4575315 100644
--- a/hosts/busch-main-docker/default.nix
+++ b/hosts/busch-main-docker/default.nix
@@ -4,6 +4,7 @@
   imports =
     [
       ../../modules/disko/legacy-full-ext4.nix
+      ./secrets.nix
 
       ../../users/julius/nixos-server.nix
       ../../modules/nix.nix
@@ -12,6 +13,7 @@
       ../../modules/server-cli.nix
       ../../modules/sshd.nix
       ../../modules/docker.nix
+      ../../modules/hawser.nix
       ../../modules/netbird-client.nix
       "${inputs.secrets}/modules/opkssh.nix"
 
@@ -34,6 +36,12 @@
     docker.setupKey = "B9ECD884-B445-4156-8643-D0F34D64C200";
   };
 
+  services.hawser = {
+    enable = true;
+    dockhandServerUrl = "wss://dockhand-connect.jfreudenberger.de/api/hawser/connect";
+    tokenSecretFile = config.age.secrets.hawser-token;
+  };
+
   # This option defines the first version of NixOS you have installed on this particular machine,
   # and is used to maintain compatibility with application data (e.g. databases) created on older NixOS versions.
   # Most users should NEVER change this value after the initial install, for any reason,
diff --git a/hosts/busch-main-docker/secrets.nix b/hosts/busch-main-docker/secrets.nix
new file mode 100644
index 0000000..f06e116
--- /dev/null
+++ b/hosts/busch-main-docker/secrets.nix
@@ -0,0 +1,6 @@
+{ inputs, ... }:
+{
+  age.secrets = {
+    hawser-token.file = "${inputs.secrets}/secrets/busch-main-docker/hawser-token";
+  };
+}