diff --git a/hosts/common/default.nix b/hosts/common/default.nix
index 0880089..2051d66 100644
--- a/hosts/common/default.nix
+++ b/hosts/common/default.nix
@@ -197,6 +197,7 @@ in {
   # Realtime scheduling for pipewire and mpd
   security.rtkit.enable = !config.machineVars.headless;
 
+  systemd.tpm2.enable = true;
   security.tpm2 = {
     enable = lib.mkDefault true;
     abrmd.enable = lib.mkDefault config.security.tpm2.enable;
@@ -217,6 +218,12 @@ in {
     Defaults    lecture_file = ${sudoLecture}
   '';
 
+  systemd = {
+    sysupdate.enable = true;
+    repart.enable = true;
+    userdbd.enable = true;
+  };
+
   boot = {
     kernelPackages = lib.mkDefault pkgs.linuxPackages_latest;
     loader.systemd-boot.memtest86.enable = true;