diff --git a/databases/lldap.tf b/databases/lldap.tf
index f4a18c6..b6c959a 100644
--- a/databases/lldap.tf
+++ b/databases/lldap.tf
@@ -27,7 +27,21 @@ namespace "default" {
 EOH
 
   job_acl {
-    job_id = resource.nomad_job.lldap.id
+    # job_id = resource.nomad_job.lldap.id
+    job_id = "lldap"
+  }
+}
+
+# Create self-scoped psk so that config is valid at first start
+resource "random_password" "lldap_ldap_psk" {
+  length           = 32
+  override_special = "!@#%&*-_="
+}
+
+resource "nomad_variable" "lldap_ldap_psk" {
+  path = "secrets/ldap/allowed_psks/ldap"
+  items = {
+    psk = "lldap:${resource.random_password.lldap_ldap_psk.result}"
   }
 }
 
@@ -46,7 +60,8 @@ namespace "default" {
 EOH
 
   job_acl {
-    job_id = resource.nomad_job.lldap.id
+    # job_id = resource.nomad_job.lldap.id
+    job_id = "lldap"
     group  = "lldap"
     task   = "lldap"
   }
@@ -67,7 +82,8 @@ namespace "default" {
 EOH
 
   job_acl {
-    job_id = resource.nomad_job.lldap.id
+    # job_id = resource.nomad_job.lldap.id
+    job_id = "lldap"
     group  = "lldap"
     task   = "bootstrap"
   }
@@ -99,7 +115,8 @@ namespace "default" {
 EOH
 
   job_acl {
-    job_id = resource.nomad_job.lldap.id
+    # job_id = resource.nomad_job.lldap.id
+    job_id = "lldap"
     group  = "lldap"
     task   = "stunnel"
   }