diff --git a/plugins.cfg b/plugins.cfg
index 51eb3b1..305129b 100644
--- a/plugins.cfg
+++ b/plugins.cfg
@@ -32,4 +32,16 @@ debug = True
 
 # Simply prepend sudo here if you won't run rq worker as root
 ipset_add_cmd = ipset -exist add authenticated-clients {client_ip}
-ipset_name = authenticated-clients
\ No newline at end of file
+ipset_name = authenticated-clients
+
+# Dummy plugin to provide the client plugin with storage config while
+# simultaneously providing the manage_client tool with its storage config.
+[postgres]
+hostname=localhost
+username=captiveportal
+password=secret.
+database=captiveportal
+port=5432
+
+enabled = False
+mandatory = False
\ No newline at end of file
diff --git a/tools/manage_client.py b/tools/manage_client.py
index 7c1a074..47bf76a 100644
--- a/tools/manage_client.py
+++ b/tools/manage_client.py
@@ -2,6 +2,7 @@
 # Python helper tool to add IPtables rule using the iptc library. This must
 # of course run as root for iptc to work.
 
+from os import getuid
 from sys import exit
 from argparse import ArgumentParser, FileType, ArgumentTypeError
 from pprint import pprint as pp
@@ -97,13 +98,18 @@ config.readfp(args.config)
 sr = StoragePostgres(config=config)
 
 if args.refresh:
+    if getuid() == 0:
+        use_sudo = False
+    else:
+        use_sudo = True
+
     # Sync clients and packet counters from ipset into storage.
     proc = run_ipset(
         'list',
-        config.get('ipset', 'set_name'),
+        config.get('ipset', 'ipset_name'),
         '-output',
         'save',
-        use_sudo=False,
+        use_sudo=use_sudo,
         timeout=600
     )
 
@@ -130,7 +136,7 @@ if args.refresh:
             client = Client(
                 storage=sr,
                 ip_address=client_ip,
-                ipset_name=config.get('ipset', 'set_name')
+                ipset_name=config.get('ipset', 'ipset_name')
             )
         except Exception as e:
             if args.verbose:
@@ -173,7 +179,7 @@ for src_ip in args.src_ip:
     client = Client(
         storage=sr,
         ip_address=src_ip,
-        ipset_name=config.get('ipset', 'set_name')
+        ipset_name=config.get('ipset', 'ipset_name')
     )
 
     if args.delete:
diff --git a/tools/storage.cfg b/tools/storage.cfg
deleted file mode 100644
index e5a12c7..0000000
--- a/tools/storage.cfg
+++ /dev/null
@@ -1,9 +0,0 @@
-[postgres]
-hostname=localhost
-username=captiveportal
-password=secret.
-database=captiveportal
-port=5432
-
-[ipset]
-set_name=authenticated-clients
\ No newline at end of file