diff --git a/roles/web_server/tasks/main.yml b/roles/web_server/tasks/main.yml
index 95a12d3e10794454ebd7ee0b6777ac909de7e7fd..82a8c7949d40d52e0e545b1e9c20d24b0bfd364b 100644
--- a/roles/web_server/tasks/main.yml
+++ b/roles/web_server/tasks/main.yml
@@ -33,6 +33,16 @@
   notify:
     - Restart nginx
 
+- name: Generate the HTTPS server Diffie-Helman parameter
+  openssl_dhparam:
+    owner: root
+    group: root
+    mode: 0640
+    path: "/etc/ssl/private/{{ ansible_fqdn }}_https.dh.pem"
+    size: 2048
+  notify:
+    - Restart nginx
+
 - name: Deploy configuration file for checking certificate validity via cron
   copy:
     content: "/etc/ssl/certs/{{ ansible_fqdn }}_https.pem"