diff --git a/roles/ipa/client/tasks/main.yml b/roles/ipa/client/tasks/main.yml
new file mode 100644
index 0000000000..62564b974f
--- /dev/null
+++ b/roles/ipa/client/tasks/main.yml
@@ -0,0 +1,10 @@
+- name: Enroll system as IPA client
+  command:
+    cmd: ipa-client-install
+         --hostname={{ ansible_fqdn }}
+         --domain={{ ipa_realm | lower }}
+         --realm={{ ipa_realm }}
+         --server={{ ipa_server }}
+         -p admin -w {{ ipa_admin_password }}
+         -U -N --force-join
+    creates: /etc/ipa/default.conf
diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml
index 251e922a87..b8a19131fd 100644
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@@ -121,6 +121,7 @@
   tags:
   - ipsilon
 
+- include_role: ipa/client
 
 - name: Get admin ticket
   shell: echo "{{ipa_admin_password}}" | kinit admin