diff --git a/main.tf b/main.tf
index 03428e5..e165ae8 100644
--- a/main.tf
+++ b/main.tf
@@ -5,23 +5,29 @@ module "vpc-secrets" {
 module "vault-starter" {
   source  = "hashicorp/vault-starter/aws"
   version = "1.0.0"
-  vpc_id = var.vpc_id
-  allowed_inbound_cidrs_lb = var.allowed_inbound_cidrs_lb
-  allowed_inbound_cidrs_ssh = var.allowed_inbound_cidrs_ssh
+
   vault_version = var.vault_version
-  leader_tls_servername = var.leader_tls_servername
   node_count = var.node_count
-  kms_key_deletion_window = var.kms_key_deletion_window
-  user_supplied_iam_role_name = var.user_supplied_iam_role_name
+  resource_name_prefix = var.resource_name_prefix
+  instance_type = var.instance_type
+
+  # user_supplied_iam_role_name = var.user_supplied_iam_role_name
   user_supplied_ami_id = var.user_supplied_ami_id
-  user_supplied_kms_key_arn = var.user_supplied_kms_key_arn
+  # user_supplied_kms_key_arn = var.user_supplied_kms_key_arn
   user_supplied_userdata_path = var.user_supplied_userdata_path
-  lb_certificate_arn = var.lb_certificate_arn
+
   lb_type = var.lb_type
   lb_health_check_path = var.lb_health_check_path
-  resource_name_prefix = var.resource_name_prefix
-  secrets_manager_arn = var.secrets_manager_arn
-  private_subnet_tags = var.private_subnet_ids
-  instance_type = var.instance_type
+
+  allowed_inbound_cidrs_lb = var.allowed_inbound_cidrs_lb
+  allowed_inbound_cidrs_ssh = var.allowed_inbound_cidrs_ssh
+  kms_key_deletion_window = var.kms_key_deletion_window
   ssl_policy = var.ssl_policy
+
+  private_subnet_tags = module.vpc-secrets.private_subnet_ids
+  secrets_manager_arn = module.vpc-secrets.secrets_manager_arn
+  vpc_id = module.vpc-secrets.vpc_id
+  lb_certificate_arn = module.vpc-secrets.lb_certificate_arn
+  leader_tls_servername = module.vpc-secrets.leader_tls_servername
+
 }
\ No newline at end of file