diff --git a/roles/base_setup/tasks/main.yml b/roles/base_setup/tasks/main.yml
index 1174896..a9dcb96 100644
--- a/roles/base_setup/tasks/main.yml
+++ b/roles/base_setup/tasks/main.yml
@@ -117,18 +117,20 @@
   when: ansible_connection != "local"
   become: yes
 
-- name: Ensure SSH directory exists
+# ========== SSH Keys ==========
+- name: Ensure SSH directory exists for root
   file:
     path: /root/.ssh
     state: directory
     mode: '0700'
   become: yes
 
-- name: Add authorized key for root
+- name: Add authorized keys for root (exclusive)
   authorized_key:
     user: root
     state: present
     key: "{{ item }}"
+    exclusive: yes
   loop: "{{ ssh_public_keys }}"
   become: yes