diff --git a/roles/00-ubuntu-basic/tasks/main.yml b/roles/00-ubuntu-basic/tasks/main.yml
index 260f8ae..80e130f 100644
--- a/roles/00-ubuntu-basic/tasks/main.yml
+++ b/roles/00-ubuntu-basic/tasks/main.yml
@@ -28,10 +28,10 @@
   with_items: "{{ users }}"
 
 - name: "Add authorized keys"
-    authorized_key:
-      user: "{{ item }}"
-      key: "{{ lookup('file', 'files/'+ item + '.key.pub') }}"
-    with_items: "{{ users }}"
+  authorized_key:
+    user: "{{ item }}"
+    key: "{{ lookup('file', 'files/'+ item + '.key.pub') }}"
+  with_items: "{{ users }}"
 
 - name: Allow 'wheel' group to have passwordless sudo
   lineinfile:
diff --git a/roles/01-vpn-offloader-setup/tasks/main.yml b/roles/01-vpn-offloader-setup/tasks/main.yml
index b212766..03a5c64 100644
--- a/roles/01-vpn-offloader-setup/tasks/main.yml
+++ b/roles/01-vpn-offloader-setup/tasks/main.yml
@@ -1,10 +1,10 @@
 ---
-- name: Set NAT MASQUERADE
-ansible.builtin.iptables:
-  chain: POSTROUTING
-  table: nat
-  source: "{{ internal_network }}"
-  jump: MASQUERADE
+- name: Setup NAT
+  ansible.builtin.iptables:
+    chain: POSTROUTING
+    table: nat
+    source: "{{ internal_network }}"
+    jump: MASQUERADE
 
 - ansible.posix.sysctl:
     name: kernel.panic
diff --git a/system-setup.yml b/system-setup.yml
index 160abc6..a92cdd8 100644
--- a/system-setup.yml
+++ b/system-setup.yml
@@ -1,4 +1,4 @@
-# ansible-playbook -i hosts.yml system-setup.yml   
+# ansible-playbook -i hosts.yml system-setup.yml -e vault.yml --ask-vault-password
 - name: System preperation
   hosts: supernodes
   roles: