diff --git a/nix-darwin/default.nix b/nix-darwin/default.nix
index 98c1736..5b40cbe 100644
--- a/nix-darwin/default.nix
+++ b/nix-darwin/default.nix
@@ -12,7 +12,12 @@
   # The platform the configuration will be used on.
   nixpkgs.hostPlatform = "aarch64-darwin";
 
-  security.pam.services.sudo_local.touchIdAuth = true;
+  security.pam.services.sudo_local = {
+    enable = true;
+    reattach = true;
+    touchIdAuth = true;
+    watchIdAuth = true;
+  };
 
   system.defaults = {
     dock = {