diff --git a/kubernetes-templates/semaphoreui.yml b/kubernetes-templates/semaphoreui.yml
index 8303bc4..d787185 100644
--- a/kubernetes-templates/semaphoreui.yml
+++ b/kubernetes-templates/semaphoreui.yml
@@ -5,6 +5,12 @@ metadata:
   name: semaphore
 ---
 apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: semaphore-sa
+  namespace: semaphore
+---
+apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
   name: semaphore-data-pvc
@@ -58,6 +64,7 @@ spec:
       labels:
         app: semaphore
     spec:
+      serviceAccountName: semaphore-sa
       affinity:
         nodeAffinity:
           requiredDuringSchedulingIgnoredDuringExecution:
@@ -120,18 +127,14 @@ spec:
             - name: semaphore-persistent-storage
               mountPath: /tmp/semaphore
               subPath: tmp
-            - name: ssh-keys-secret
-              mountPath: /home/semaphore/.ssh/id_ed25519
-              subPath: id_ed25519
-            - name: ssh-keys-secret
-              mountPath: /home/semaphore/.ssh/id_ed25519.pub
-              subPath: id_ed25519.pub
-
+            - name: ssh-keys-volume
+              mountPath: /home/semaphore/.ssh
+              readOnly: true
       volumes:
         - name: semaphore-persistent-storage
           persistentVolumeClaim:
             claimName: semaphore-data-pvc
-        - name: ssh-keys-secret
+        - name: ssh-keys-volume
           secret:
             secretName: semaphore-secrets
             defaultMode: 384