diff --git a/luci/nixos/hardware-configuration.nix b/luci/nixos/hardware-configuration.nix
index e91570b..46006de 100644
--- a/luci/nixos/hardware-configuration.nix
+++ b/luci/nixos/hardware-configuration.nix
@@ -35,7 +35,7 @@
 
   # change ownership of kage to be open
   systemd.tmpfiles.rules = [
-    "d /nfs_export/kage 0777 kage kage - -"
+    "d /nfs_export/kage 0777 kage users - -"
   ];
 
   swapDevices = [ ];
diff --git a/shared/server-configuration.nix b/shared/server-configuration.nix
index 5b33a1c..9107302 100644
--- a/shared/server-configuration.nix
+++ b/shared/server-configuration.nix
@@ -94,7 +94,7 @@ in
       enable = true;
       exports = ''
        ${srvConfig.nfsRoot} ${srvConfig.nfsIpExport}(rw,fsid=root,no_subtree_check)
-       ${lib.concatMapStringsSep "\n" (n: "${srvConfig.nfsRoot}${n} ${srvConfig.nfsIpExport}(rw,sync,no_subtree_check,all_squash,anongid=100)") srvConfig.nfsExports}
+       ${lib.concatMapStringsSep "\n" (n: "${srvConfig.nfsRoot}${n} ${srvConfig.nfsIpExport}(rw,sync,no_subtree_check,all_squash,anongid=105,anonuid=1005)") srvConfig.nfsExports}
      '';
     };
     # nfs port TODO make dependant on option enabled
@@ -102,7 +102,11 @@ in
     # 8384 - syncthing
     networking.firewall.allowedTCPPorts = [ 80 2049 8384 ];
 
+    users.groups.kage = {
+      gid = 105;
+    };
     users.users.kage = {
+      uid = 1005;
       isSystemUser = true;
       initialPassword = "password";
       description = "user to manage nfs and syncthing tasks";