diff --git a/ct-ansible/hosts b/ct-ansible/hosts
new file mode 100644
index 0000000..136dc5c
--- /dev/null
+++ b/ct-ansible/hosts
@@ -0,0 +1,2 @@
+[hotes]
+sioadm
diff --git a/ct-ansible/playbook.yml b/ct-ansible/playbook.yml
new file mode 100644
index 0000000..375ccf1
--- /dev/null
+++ b/ct-ansible/playbook.yml
@@ -0,0 +1,39 @@
+---
+- hosts: hotes
+  become: yes
+  become_user: root
+  tasks:
+
+  - name: création de sioadm
+    user:
+      name:sioadm
+      state:present
+      generate_ssh_key:yes
+      groups:sudo
+      append:yes
+      password:"{{ 'sioadm' | password_hash('sha512') }}"
+      password_lock:yes
+
+  - name: desinstaller le paquet wpasupplicant
+    apt:
+      name: wpasupplicant
+      state: absent
+
+  - name: desinstaller le paquet rpcbind
+    apt:
+      name: rpcbind            
+      state: absent
+
+  - name: ecriture fichier resolv.conf
+    template: 
+      src: erlov.conf
+      dest: "/etc/resolv.conf"
+
+  - name: configuration sshd_config
+     replace:
+       dest: /etc/ssh/sshd_config
+       regexp: '^PermitRootLogin (yes|without-password)'
+       regexp: '^PermitRootLogin (yes|without-password|prohibit-password)'
+       replace: "PermitRootLogin no"
+     notify: reload sshd
+     when: evolinux_root_disable_ssh
diff --git a/ct-ansible/resolv.conf b/ct-ansible/resolv.conf
new file mode 100644
index 0000000..352c7b7
--- /dev/null
+++ b/ct-ansible/resolv.conf
@@ -0,0 +1,4 @@
+search sio.lan
+domain sio.lan
+nameserver 10.121.38.7
+nameserver 10.121.38.8