diff --git a/playbooks/groups/copr-keygen.yml b/playbooks/groups/copr-keygen.yml
index 7f998cfdd4..e4d90a7fba 100644
--- a/playbooks/groups/copr-keygen.yml
+++ b/playbooks/groups/copr-keygen.yml
@@ -43,6 +43,13 @@
     hostname: name="{{copr_hostbase}}.cloud.fedoraproject.org"
     when: datacenter != "aws"
 
+# To avoid ID collisions with roles that are provisioned earlier
+- name: pre-create users and groups with specifics UIDs and GIDs
+  tasks:
+  - group: name="copr-signer" state=present gid=989
+  - group: name="apache" state=present gid=48
+  - user: name="copr-signer" group=copr-signer groups=apache uid=992
+
 - name: provision instance
   hosts: copr_keygen_dev:copr_keygen_stg:copr_keygen:copr_keygen_dev_aws:copr_keygen_aws
   gather_facts: True
diff --git a/roles/copr/keygen/tasks/main.yml b/roles/copr/keygen/tasks/main.yml
index 2e71751157..f71fba7399 100644
--- a/roles/copr/keygen/tasks/main.yml
+++ b/roles/copr/keygen/tasks/main.yml
@@ -5,10 +5,6 @@
 - name: mount up disk of copr repo
   mount: name=/var/lib/copr-keygen src='LABEL=copr-keygen' fstype=ext4 state=mounted
 
-- group: name="copr-signer" state=present gid=989
-- group: name="apache" state=present gid=48
-- user: name="copr-signer" group=copr-signer groups=apache uid=992
-
 - name: install copr-keygen
   dnf: state=present name=copr-keygen
   notify: