diff --git a/charts/garm/templates/_credentials.tpl b/charts/garm/templates/_credentials.tpl
index e93bd03..c899cfc 100644
--- a/charts/garm/templates/_credentials.tpl
+++ b/charts/garm/templates/_credentials.tpl
@@ -44,10 +44,9 @@ Get Gitea token - either user-provided or generated
 {{- end -}}
 
 {{- define "garm.dbPassphrase" -}}
-{{- $secret := lookup "v1" "Secret" .Release.Namespace (printf "%s-config" ( include "garm.fullname" . )) -}}
-{{- if and $secret ((fromToml (index $secret.data "config.toml" | b64dec)).database.passphrase) -}}
-{{- $another := fromToml (index $secret.data "config.toml" | b64dec) -}}
-{{ $another.database.passphrase }}
+{{- $secret := lookup "v1" "Secret" .Release.Namespace (printf "%s-db-credentials" ( include "garm.fullname" . )) -}}
+{{- if and $secret (index $secret.data "passphrase" | b64dec) -}}
+{{- (index $secret.data "passphrase" | b64dec) -}}
 {{- else -}}
 {{- include "garm.randomString" . -}}
 {{- end -}}
diff --git a/charts/garm/templates/secrets.yaml b/charts/garm/templates/secrets.yaml
index d4dd939..044a1ef 100644
--- a/charts/garm/templates/secrets.yaml
+++ b/charts/garm/templates/secrets.yaml
@@ -14,6 +14,22 @@ stringData:
   GARM_URL: {{ printf "https://%s" (index .Values.ingress.hosts 0).host | quote }}
   GIT_URL: {{ .Values.credentials.gitea.url | quote }}
 ---
+{{- $secretName := printf "%s%s" (include "garm.fullname" .)  "-db-credentials" -}}
+{{- $secretExists := lookup "v1" "Secret" .Release.Namespace $secretName -}}
+
+{{- if not $secretExists -}}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ $secretName }}
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "-5"
+stringData:
+  passphrase: {{- include "garm.randomString" . -}}
+{{- end -}}
+---
 apiVersion: v1
 kind: Secret
 metadata:
@@ -77,14 +93,16 @@ stringData:
       {{- toYaml .Values.providerConfig.k8s.flavors | nindent 6 }}
 
   edge-connect-provider-config.toml: |
-    organization = {{ .Values.providerConfig.edgeConnect.organization | quote }}
-    region = {{ .Values.providerConfig.edgeConnect.region | quote }}
-    edge_connect_url = {{ .Values.providerConfig.edgeConnect.edgeConnectUrl | quote }}
     log_file = "/garm/provider.log"
     credentials_file = "/etc/garm-creds/creds.toml"
-    default_flavor = "defualt"
 
-    [cloudlet]
+    [edge_connect]
+    organization = {{ .Values.providerConfig.edgeConnect.organization | quote }}
+    region = {{ .Values.providerConfig.edgeConnect.region | quote }}
+    url = {{ .Values.providerConfig.edgeConnect.edgeConnectUrl | quote }}
+    default_flavor = {{ .Values.providerConfig.edgeConnect.defaultFlavor | quote }}
+
+    [edge_connect.cloudlet]
     name = {{ .Values.providerConfig.edgeConnect.cloudlet.name | quote }}
     organization = {{ .Values.providerConfig.edgeConnect.cloudlet.organization | quote }}
 {{- if not .Values.credentials.edgeConnect.existingSecretName }}
diff --git a/charts/garm/values.yaml b/charts/garm/values.yaml
index 2e3629f..561c2a5 100644
--- a/charts/garm/values.yaml
+++ b/charts/garm/values.yaml
@@ -4,7 +4,7 @@ fullnameOverride: ""
 
 image:
   repository: edp.buildth.ing/devfw-cicd/garm
-  tag: provider-ec-40
+  tag: provider-ec-43
   pullPolicy: Always
 
 replicaCount: 1
@@ -103,6 +103,7 @@ providerConfig:
     organization: "edp-developer-framework"
     region: "EU"
     edgeConnectUrl: "https://hub.apps.edge.platform.mg3.mdb.osc.live"
+    defaultFlavor: "EU.small"
     cloudlet:
       name: "Munich"
       organization: "TelekomOP"