diff --git a/hosts/defiant/filesystems.nix b/hosts/defiant/filesystems.nix
index 06343bb..b031f8d 100644
--- a/hosts/defiant/filesystems.nix
+++ b/hosts/defiant/filesystems.nix
@@ -5,7 +5,6 @@
   boot = {
     zfs.extraPools = [ "tank" ];
     supportedFilesystems = [ "zfs" ];
-    kernelPackages = config.boot.zfs.package.latestCompatibleLinuxPackages;
   };
   services.prometheus.exporters.zfs.enable = true;
 
diff --git a/hosts/defiant/services/keycloak.nix b/hosts/defiant/services/keycloak.nix
index 1912454..e4df1f5 100644
--- a/hosts/defiant/services/keycloak.nix
+++ b/hosts/defiant/services/keycloak.nix
@@ -16,17 +16,17 @@ in {
 
     settings = {
       cache = "local";
-      hostname = "iam.feal.no";
-      hostname-strict-backchannel = true;
-      http-enable = true;
+      hostname = "https://iam.feal.no";
+      hostname-backchannel-dynamic = false;
+      http-enabled = true;
       http-host = "127.0.1.2";
       http-port = 5060;
-      proxy = "edge";
+      proxy-headers = "xforwarded";
     };
   };
 
   # The main reverse proxy is defined in ./nginx.nix
   services.nginx.virtualHosts.${cfg.hostname} = {
-    locations."= /".return = "302 https://${cfg.hostname}/realms/feal.no/account";
+    locations."= /".return = "302 ${cfg.hostname}/realms/feal.no/account";
   };
 }