From 4987003c4e382231dd668ce8a1e8a68ee999685f Mon Sep 17 00:00:00 2001
From: jakub <jakub@zacekj.cz>
Date: Fri, 24 Apr 2026 20:18:37 +0000
Subject: [PATCH] Update initial_install/roles/baseline_sudo/tasks/main.yml

---
 initial_install/roles/baseline_sudo/tasks/main.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/initial_install/roles/baseline_sudo/tasks/main.yml b/initial_install/roles/baseline_sudo/tasks/main.yml
index 9ba6a53..a8e5c4d 100644
--- a/initial_install/roles/baseline_sudo/tasks/main.yml
+++ b/initial_install/roles/baseline_sudo/tasks/main.yml
@@ -7,10 +7,11 @@
 - name: Ensure automation user has passwordless sudo
   ansible.builtin.copy:
     dest: /etc/sudoers.d/automation
-    content: "automation ALL=(ALL) NOPASSWD:ALL"
     owner: root
     group: root
     mode: '0440'
+    content: |
+      automation ALL=(ALL:ALL) NOPASSWD: ALL
     validate: 'visudo -cf %s'
 
 - name: Ensure sudo binary has correct permissions