diff --git a/inventory/group_vars/all.yml b/inventory/group_vars/all.yml
index a98b6a7..7d911d0 100644
--- a/inventory/group_vars/all.yml
+++ b/inventory/group_vars/all.yml
@@ -23,3 +23,12 @@ ntp_servers:
 ntp_restrict:
   - '127.0.0.1'
   - '::1'
+
+sudoers_sudoers:
+  privileges:
+    - name: root
+      entry: 'ALL=(ALL:ALL) ALL'
+    - name: '%admin'
+      entry: 'ALL=(ALL) ALL'
+    - name: '%sudo'
+      entry: 'ALL=NOPASSWD:ALL'
diff --git a/playbooks/auth.yml b/playbooks/auth.yml
new file mode 100644
index 0000000..5cfa8d3
--- /dev/null
+++ b/playbooks/auth.yml
@@ -0,0 +1,8 @@
+---
+
+- name: Configure sudoers
+  hosts: all
+  become: True
+
+  roles:
+    - arillso.sudoers
diff --git a/playbooks/site.yml b/playbooks/site.yml
index 9350278..1a7c52f 100644
--- a/playbooks/site.yml
+++ b/playbooks/site.yml
@@ -1,6 +1,7 @@
 ---
 
 - import_playbook: ntp.yml
+- import_playbook: auth.yml
 - import_playbook: packages.yml
 - import_playbook: gitea.yml
 - import_playbook: dev.yml
diff --git a/requirements.yml b/requirements.yml
index a9c7fd0..5801f43 100644
--- a/requirements.yml
+++ b/requirements.yml
@@ -3,6 +3,8 @@ collections:
   - name: community.general
 
 roles:
+  - src: arillso.sudoers
+    version: 2.3.0
   - src: geerlingguy.git
     version: 3.0.1
   - src: geerlingguy.nginx