diff --git a/roles/prosody/tasks/main.yml b/roles/prosody/tasks/main.yml
index 10004e4b76b6c0f0d5ba78140cf833019b3a526a..596c50c343544b0ddcdaeb4d203765bbc6112776 100644
--- a/roles/prosody/tasks/main.yml
+++ b/roles/prosody/tasks/main.yml
@@ -17,6 +17,9 @@
 - name: Install Prosody
   apt: name=prosody state=installed
 
+- name: Allow Prosody user to traverse the directory with TLS private keys
+  user: name=prosody append=yes groups=ssl-cert
+
 - name: Deploy XMPP TLS private key
   copy: dest="/etc/ssl/private/{{ prosody_tls_key | basename }}" src="{{ prosody_tls_key }}"
         mode=640 owner=root group=prosody