diff --git a/setup/modules/FreeipaAnsible/ansible/deploy-ansipa-install.yml b/setup/modules/FreeipaAnsible/ansible/deploy-ansipa-install.yml
new file mode 100644
index 0000000..7393ce2
--- /dev/null
+++ b/setup/modules/FreeipaAnsible/ansible/deploy-ansipa-install.yml
@@ -0,0 +1,49 @@
+---
+- name: Deploy FreeIPA package auto-installer
+  hosts: all
+  become: yes
+
+  tasks:
+
+    - name: Install script
+      copy:
+        src: ansipa-install-packages.sh
+        dest: /usr/local/bin/ansipa-install-packages.sh
+        mode: '0755'
+
+    - name: Install systemd service
+      copy:
+        dest: /etc/systemd/system/ansipa-install.service
+        mode: '0644'
+        content: |
+          [Unit]
+          Description=Install packages based on FreeIPA ansipa-install-* groups
+          After=network-online.target sssd.service
+
+          [Service]
+          Type=oneshot
+          ExecStart=/usr/local/bin/ansipa-install-packages.sh
+
+    - name: Install systemd timer
+      copy:
+        dest: /etc/systemd/system/ansipa-install.timer
+        mode: '0644'
+        content: |
+          [Unit]
+          Description=Periodic FreeIPA package sync
+
+          [Timer]
+          OnBootSec=2min
+          OnUnitActiveSec=30min
+
+          [Install]
+          WantedBy=timers.target
+
+    - name: Reload systemd
+      command: systemctl daemon-reload
+
+    - name: Enable and start timer
+      systemd:
+        name: ansipa-install.timer
+        enabled: yes
+        state: started