diff --git a/roles/people/files/userdir.conf b/roles/people/files/userdir.conf
new file mode 100644
index 0000000000..b34668403e
--- /dev/null
+++ b/roles/people/files/userdir.conf
@@ -0,0 +1,35 @@
+#
+# UserDir: The name of the directory that is appended onto a user's home
+# directory if a ~user request is received.
+#
+# The path to the end user account 'public_html' directory must be
+# accessible to the webserver userid. This usually means that ~userid
+# must have permissions of 711, ~userid/public_html must have permissions
+# of 755, and documents contained therein must be world-readable.
+# Otherwise, the client will only receive a "403 Forbidden" message.
+#
+
+ #
+ # UserDir is disabled by default since it can confirm the presence
+ # of a username on the system (depending on home directory
+ # permissions).
+ #
+ #UserDir enabled
+
+ #
+ # To enable requests to /~user/ to serve the user's public_html
+ # directory, remove the "UserDir disabled" line above, and uncomment
+ # the following line instead:
+ #
+ #UserDir public_html
+
+
+#
+# Control access to UserDir directories. The following is an example
+# for a site where these directories are restricted to read-only.
+#
+#
+# AllowOverride FileInfo AuthConfig Limit Indexes
+# Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
+# Require method GET POST OPTIONS
+#
diff --git a/roles/people/tasks/main.yml b/roles/people/tasks/main.yml
index b38a9fde6e..0a911e2cb1 100644
--- a/roles/people/tasks/main.yml
+++ b/roles/people/tasks/main.yml
@@ -24,6 +24,7 @@
- cgit.conf
- people.conf
- ssl.conf
+ - userdir.conf
tags:
- people