diff --git a/applications/consdb/secrets-base.yaml b/applications/consdb/secrets-base.yaml
new file mode 100644
index 0000000000..2695612b18
--- /dev/null
+++ b/applications/consdb/secrets-base.yaml
@@ -0,0 +1,12 @@
+lfa-password:
+  description: >-
+    LFA password, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-secret-access-key
+lfa-key:
+  description: >-
+    LFA key, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-access-key-id
diff --git a/applications/consdb/secrets-summit.yaml b/applications/consdb/secrets-summit.yaml
new file mode 100644
index 0000000000..2695612b18
--- /dev/null
+++ b/applications/consdb/secrets-summit.yaml
@@ -0,0 +1,12 @@
+lfa-password:
+  description: >-
+    LFA password, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-secret-access-key
+lfa-key:
+  description: >-
+    LFA key, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-access-key-id
diff --git a/applications/consdb/secrets-tucson-teststand.yaml b/applications/consdb/secrets-tucson-teststand.yaml
new file mode 100644
index 0000000000..2695612b18
--- /dev/null
+++ b/applications/consdb/secrets-tucson-teststand.yaml
@@ -0,0 +1,12 @@
+lfa-password:
+  description: >-
+    LFA password, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-secret-access-key
+lfa-key:
+  description: >-
+    LFA key, used for retrieving Header Service objects.
+  copy:
+    application: auxtel
+    key: aws-access-key-id
diff --git a/applications/consdb/secrets.yaml b/applications/consdb/secrets.yaml
index 3799b8f010..f8c76e5445 100644
--- a/applications/consdb/secrets.yaml
+++ b/applications/consdb/secrets.yaml
@@ -1,27 +1,15 @@
 consdb-password:
   description: >-
-    Kafka password for consdb user
+    Kafka password for consdb user, used to get EFD data.
   copy:
     application: sasquatch
     key: consdb-password
 exposurelog-password:
   description: >-
-    PostgreSQL password for the exposurelog user exposurelog database.
+    PostgreSQL password for the exposurelog user exposurelog database, used to write to ConsDB schemas.
   copy:
     application: exposurelog
     key: exposurelog_password
 oods-password:
   description: >-
-    PostgreSQL password for the OODS user Butler database.
-lfa-password:
-  description: >-
-    LFA password
-  copy:
-    application: auxtel
-    key: aws-secret-access-key
-lfa-key:
-  description: >-
-    LFA key
-  copy:
-    application: auxtel
-    key: aws-access-key-id
+    PostgreSQL password for the OODS user in the Butler database.