diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml
index 4919486140..a66b13f1e0 100644
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@@ -16,6 +16,7 @@
   - mod_auth_openidc
   - mod_auth_gssapi
   - python3-psycopg2
+  - python3-pam
   # For the openid api extension
   - python3-freeipa
   # For the playbook itself
diff --git a/roles/ipsilon/templates/httpd.conf.j2 b/roles/ipsilon/templates/httpd.conf.j2
index 0c00bbe877..5f74a413bb 100644
--- a/roles/ipsilon/templates/httpd.conf.j2
+++ b/roles/ipsilon/templates/httpd.conf.j2
@@ -20,7 +20,7 @@ RewriteRule ^([a-z0-9_\.-]+)\.id\.fedoraproject\.org/.* /openid/id/$1/ [PT]
 {% endif %}
 
 
-WSGIScriptAlias / /usr/libexec/ipsilon
+WSGIScriptAlias / /usr/libexec/ipsilon/ipsilon.py
 WSGIDaemonProcess ipsilon user=ipsilon group=ipsilon home=/var/lib/ipsilon/root display-name=ipsilon processes=6 threads=2 maximum-requests=1000
 WSGISocketPrefix run/wsgi
 #WSGIRestrictStdout Off
@@ -36,7 +36,7 @@ WSGIApplicationGroup %{GLOBAL}
     WSGIProcessGroup ipsilon
 </Location>
 
-<Directory /usr/libexec>
+<Directory /usr/libexec/ipsilon>
     Require all granted
 </Directory>
 
diff --git a/roles/openshift-apps/ipsilon/templates/Dockerfile b/roles/openshift-apps/ipsilon/templates/Dockerfile
index 8977a7905a..2d88c11ab5 100644
--- a/roles/openshift-apps/ipsilon/templates/Dockerfile
+++ b/roles/openshift-apps/ipsilon/templates/Dockerfile
@@ -11,7 +11,6 @@ RUN dnf install -y \
     ipsilon \
     ipsilon-openid \
     ipsilon-saml2 \
-    ipsilon-persona \
     ipsilon-authgssapi \
     ipsilon-authldap \
     ipsilon-openidc \