diff --git a/tasks/main.yml b/tasks/main.yml
index 0ecb4f2..bbd4dbe 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -25,11 +25,6 @@
     src: files/replicate.sh
     dest: /scripts/replicate.sh
 
-- name: deploy letsencrypt setup script
-  ansible.builtin.copy:
-    src: files/setup-le.sh
-    dest: /scripts/setup-le.sh
-
 #this should be moved to dedicated selinux role down the road
 - name: Disable SELinux
   ansible.posix.selinux:
@@ -46,6 +41,18 @@
   register: result2
   ignore_errors: true
 
+- name: deploy letsencrypt setup script
+  ansible.builtin.copy:
+    src: files/setup-le.sh
+    dest: /scripts/setup-le.sh
+  when: (result is succeeded) and (result2 is succeeded)
+
+- name: run letsencrypt setup script
+  ansible.builtin.script:
+    cmd: /scripts/setup-le.sh
+  when: (result is succeeded) and (result2 is succeeded)
+
+
 - name: create symlink for certificate
   ansible.builtin.file:
     src: "/etc/letsencrypt/live/{{ansible_fqdn}}/cert.pem"