diff --git a/MetaObjects/authentik-keys.yml b/MetaObjects/authentik-keys.yml
index 8356041..e4dbdd6 100644
--- a/MetaObjects/authentik-keys.yml
+++ b/MetaObjects/authentik-keys.yml
@@ -1,28 +1,12 @@
 apiVersion: external-secrets.io/v1beta1
-kind: SecretStore
-metadata:
-  name: ext-authentik-backend
-  namespace: authentik
-spec:
-  provider:
-    vault:
-      server: "http://vault.vault:8200"
-      path: "kv"
-      version: "v2"
-      auth:
-        kubernetes:
-          mountPath: "kubernetes"
-          role: "kube-role"
----
-apiVersion: external-secrets.io/v1beta1
 kind: ExternalSecret
 metadata:
   name: ext-authentik
   namespace: authentik
 spec:
   secretStoreRef:
-    name: ext-authentik-backend
-    kind: SecretStore
+    name: secret-store
+    kind: ClusterSecretStore
   target:
     name: authentik-secret
   data:
diff --git a/MetaObjects/cloudflare-keys.yml b/MetaObjects/cloudflare-keys.yml
index 49facb2..2b1465c 100644
--- a/MetaObjects/cloudflare-keys.yml
+++ b/MetaObjects/cloudflare-keys.yml
@@ -1,28 +1,12 @@
 apiVersion: external-secrets.io/v1beta1
-kind: SecretStore
-metadata:
-  name: ext-cloudflare-backend
-  namespace: cert-manager
-spec:
-  provider:
-    vault:
-      server: "http://vault.vault:8200"
-      path: "kv"
-      version: "v2"
-      auth:
-        kubernetes:
-          mountPath: "kubernetes"
-          role: "kube-role"
----
-apiVersion: external-secrets.io/v1beta1
 kind: ExternalSecret
 metadata:
   name: ext-cloudflare
   namespace: cert-manager
 spec:
   secretStoreRef:
-    name: ext-cloudflare-backend
-    kind: SecretStore
+    name: secret-store
+    kind: ClusterSecretStore
   target:
     name: cloudflare-api-token
   data: