diff --git a/defaults/main.yml b/defaults/main.yml
new file mode 100644
index 0000000..5de84ad
--- /dev/null
+++ b/defaults/main.yml
@@ -0,0 +1,9 @@
+---
+certbot_work_dir: /var/lib/letsencrypt
+certbot_config_dir: /etc/letsencrypt
+certbot_log_dir: /var/log/letsencrypt
+certbot_environment:
+  - {{ certbot_work_dir }}
+  - {{ certbot_config }}
+  - {{ certbot_log_dir }}
+certbot_user: root
diff --git a/tasks/install.yml b/tasks/install.yml
new file mode 100644
index 0000000..b88ac55
--- /dev/null
+++ b/tasks/install.yml
@@ -0,0 +1,27 @@
+---
+- name: Create certbot user '{{ certbot_user }}'
+  user:
+    name: "{{ certbot_user }}"
+  become: True
+  become_user: root
+  when: not certbot_user == root
+
+- name: Deploy certbot
+  block:
+    - name: Install certbot
+      package:
+        name: certbot
+        state: present
+
+    - name: Create certbot environment
+      path: /etc/some_directory
+        state: directory
+        mode: 0755
+      with_items: "{{ certbot_environment }}"
+
+    - name: Deploy config file
+      template:
+        src: etc/ssh/sshd_config.j2
+        dest: /etc/ssh/sshd_config
+  become: True
+  become_user: "{{ certbot_user }}"
diff --git a/tasks/main.yml b/tasks/main.yml
new file mode 100644
index 0000000..a48ceb8
--- /dev/null
+++ b/tasks/main.yml
@@ -0,0 +1,2 @@
+---
+- include_tasks: install.yml