diff --git a/roles/releng/tasks/main.yml b/roles/releng/tasks/main.yml
index 75fde8e87c..de11efbc25 100644
--- a/roles/releng/tasks/main.yml
+++ b/roles/releng/tasks/main.yml
@@ -197,6 +197,46 @@
   copy: src="epel8-playground" dest=/etc/cron.d/epel8-playground
   when: inventory_hostname.startswith('branched-composer.iad2')
 
+- name: Deploy the fedora-messaging CA
+  copy:
+    src: "{{ private }}/files/rabbitmq/{{env}}/pki/ca.crt"
+    dest: /etc/pki/fedora-messaging/rabbitmq-ca.crt
+    mode: 0644
+    owner: apache
+    group: apache
+  tags:
+  - bodhi
+
+- name: Deploy the fedora-messaging cert
+  copy:
+    src: "{{ private }}/files/rabbitmq/{{env}}/pki/issued/pungi{{env_suffix}}.crt"
+    dest: /etc/pki/fedora-messaging/rabbitmq-pungi.crt
+    mode: 0644
+    owner: apache
+    group: apache
+  tags:
+  - bodhi
+
+- name: Deploy the fedora-messaging key
+  copy:
+    src: "{{ private }}/files/rabbitmq/{{env}}/pki/private/bodhi{{env_suffix}}.key"
+    dest: /etc/pki/fedora-messaging/rabbitmq-pungi.key
+    mode: 0600
+    owner: apache
+    group: apache
+  tags:
+
+- name: Install fedora-messaging config
+  template:
+    src: fedora-messaging.toml.j2
+    dest: /etc/fedora-messaging/config.toml
+    owner: apache
+    group: apache
+    mode: 0600
+  tags:
+  - config
+  - releng
+
 - name: install compose /etc/httpd/conf.d/compose.conf file
   copy: >
     src="compose.conf"
diff --git a/roles/releng/templates/fedora-messaging.toml.j2 b/roles/releng/templates/fedora-messaging.toml.j2
new file mode 100644
index 0000000000..039b75d8d3
--- /dev/null
+++ b/roles/releng/templates/fedora-messaging.toml.j2
@@ -0,0 +1,37 @@
+amqp_url = "amqps://pungi{{ env_suffix }}:@rabbitmq{{ env_suffix }}.fedoraproject.org/%2Fpubsub"
+
+{% if env == "staging" %}
+topic_prefix = "org.fedoraproject.stg"
+{% else %}
+topic_prefix = "org.fedoraproject.prod"
+{% endif %}
+
+publish_exchange = "amq.topic"
+passive_declares = true
+
+[tls]
+ca_cert = "/etc/pki/rabbitmq/ca/rabbitmq-ca.crt"
+keyfile = "/etc/pki/rabbitmq/key/rabbitmq-pungi.key"
+certfile = "/etc/pki/rabbitmq/crt/rabbitmq-pungi.crt"
+
+[client_properties]
+app = "pungi"
+
+[qos]
+prefetch_size = 0
+prefetch_count = 25
+
+[log_config]
+version = 1
+disable_existing_loggers = true
+[log_config.formatters.simple]
+format = "%(asctime)s [%(name)s %(levelname)s] %(message)s"
+datefmt = "%Y-%m-%d %H:%M:%S"
+[log_config.handlers.console]
+class = "logging.StreamHandler"
+formatter = "simple"
+stream = "ext://sys.stdout"
+[log_config.loggers.fedora_messaging]
+level = "INFO"
+propagate = false
+handlers = ["console"]