diff --git a/ansible.cfg b/ansible.cfg
index c8667f5..62687a7 100644
--- a/ansible.cfg
+++ b/ansible.cfg
@@ -5,3 +5,4 @@ vault_password_file=.vault-pass.sh
 host_key_checking = False
 enable_plugins = linode
 private_key_file=~/.ssh/ansible
+remote_user=ansible
diff --git a/bootstrap.yml b/bootstrap.yml
new file mode 100644
index 0000000..4389a42
--- /dev/null
+++ b/bootstrap.yml
@@ -0,0 +1,27 @@
+---
+- hosts: all
+  become: true
+  tasks:
+    - name: Update Packages
+      apt:
+        upgrade: dist
+        update_cache: true
+
+    - name: Create ansible user
+      user:
+        name: ansible
+        groups: root
+
+    - name: Add ssh key for ansible
+      authorized_key:
+        user: "ansible"
+        state: present
+        key: "{{ lookup('file', '~/.ssh/ansible.pub') }}"
+
+    - name: Add sudoers file for ansible
+      copy:
+        src: sudoer_ansible
+        dest: /etc/sudoers.d/ansible
+        owner: root
+        group: root
+        mode: 0440
diff --git a/files/sudoer_ansible b/files/sudoer_ansible
new file mode 100644
index 0000000..9888393
--- /dev/null
+++ b/files/sudoer_ansible
@@ -0,0 +1 @@
+ansible ALL=(ALL) NOPASSWD: ALL