diff --git a/scripts/setup_wizard.sh b/scripts/setup_wizard.sh
index d2fe3de..7ff12c6 100755
--- a/scripts/setup_wizard.sh
+++ b/scripts/setup_wizard.sh
@@ -144,6 +144,8 @@ fi
 get_input "CERT_DIR" "Enter directory for certificates" "/var/lib/tls" "false"
 get_input "CERT_FILENAME" "Name for cert file" "cert.pem" "false"
 get_input "KEY_FILENAME" "Name for private key" "key.pem" "false"
+get_input "SPIFFE" "SPIFFE identity" "node" "false"
+
 
 if [ ! -e "$CERT_DIR" ]; then
     (umask 077; mkdir -p "${CERT_DIR}")
@@ -168,6 +170,7 @@ if [ ! -f "$CERT_LOCATION" ] || [ ! -f "$KEY_LOCATION" ]; then
         --san "$hostname" \
         --san "$hostname.john-stream.com" \
         --san "$ip_address" \
+        --san "spiffe://john-stream.com/$SPIFFE" \
         --provisioner admin
 fi