diff --git a/defaults/main.yml b/defaults/main.yml
index 84d4912..9c3066c 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -5,4 +5,6 @@ provision_ansible_user_password: supersecretpassword
 provision_ansible_user_is_system: true
 provision_ansible_user_shell: /bin/bash
 provision_ansible_user_sudoer: false
-provision_ansible_user_ssh_keys: []
+provision_ansible_user_ssh_key:
+provision_ansible_user_ssh_key_options: ""
+provision_ansible_user_ssh_key_exclusive: true
\ No newline at end of file
diff --git a/tasks/create_user.yml b/tasks/create_user.yml
index 260db20..99e853f 100644
--- a/tasks/create_user.yml
+++ b/tasks/create_user.yml
@@ -8,3 +8,16 @@
     shell: "{{ provision_ansible_user_shell }}"
     system: "{{ provision_ansible_user_is_system }}"
     create_home: true
+
+- name: "Add user to sudoers"
+  ansible.builtin.copy:
+    dest: "/etc/sudoers.d/{{ provision_ansible_user_name }}"
+    mode: 0640
+    content: "{{ provision_ansible_user_name }}  ALL=(ALL)  NOPASSWD: ALL"
+
+- name: "Add key to authorized_keys"
+  user: "{{ provision_ansible_user_name }}"
+  key: "{{ provision_ansible_user_ssh_key }}"
+  comment: "ansible@{{ ansible_hostname }}"
+  key_options: "{{ provision_ansible_user_ssh_key_options }}"
+  exclusive: "{{ provision_ansible_user_ssh_key_exclusive }}"