diff --git a/inventories/default.nix b/inventories/default.nix
index 2c28fcf..1493635 100644
--- a/inventories/default.nix
+++ b/inventories/default.nix
@@ -87,54 +87,63 @@
             name = "pocket-id";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         nextcloud = {
           module = {
             name = "nextcloud";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         stirling-pdf = {
           module = {
             name = "stirling-pdf";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         actual-budget = {
           module = {
             name = "actual-budget";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         victoriametrics = {
           module = {
             name = "victoriametrics";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         vikunja = {
           module = {
             name = "vikunja";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         grafana = {
           module = {
             name = "grafana";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         pingvin = {
           module = {
             name = "pingvin";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
         paperless = {
           module = {
             name = "paperless";
             input = "self";
           };
+          roles.default.machines.b4l = { };
         };
       };
     };
diff --git a/machines/ramus/configuration.nix b/machines/ramus/configuration.nix
index ce5ebcd..cf51b61 100644
--- a/machines/ramus/configuration.nix
+++ b/machines/ramus/configuration.nix
@@ -13,5 +13,21 @@
   clan.core.sops.defaultGroups = [ "admins" ];
   clan.core.networking.targetHost = "root@[${config.clan.core.vars.generators.zerotier.files.zerotier-ip.value}]";
 
+  clan.core.vars.generators.acme = {
+    share = true;
+    files.email.secret = false;
+
+    prompts.email = {
+      type = "line";
+      description = "Email for ACME registeration";
+    };
+
+    script = ''
+      cat $prompts/email > $out/email
+    '';
+  };
+
+  security.acme.certs.defaults.email = config.clan.core.vars.generators.acme.files.email.value;
+
   imports = [ ./think-greater-chiangmai.nix ];
 }
diff --git a/machines/ramus/think-greater-chiangmai.nix b/machines/ramus/think-greater-chiangmai.nix
index 019d6d9..b9781de 100644
--- a/machines/ramus/think-greater-chiangmai.nix
+++ b/machines/ramus/think-greater-chiangmai.nix
@@ -107,4 +107,15 @@ in
     domain = "think-backend.wegetthingsmade.com";
     settings = commonSettings;
   };
+
+  services.nginx.virtualHosts.${config.services.think-greaterchiangmai.domain} = {
+    addSSL = true;
+    forceSSL = true;
+    enableACME = true;
+  };
+  services.nginx.virtualHosts.${config.services.think-backend-greaterchiangmai.domain} = {
+    addSSL = true;
+    forceSSL = true;
+    enableACME = true;
+  };
 }