diff --git a/roles/nginx/tasks/main.json b/roles/nginx/tasks/main.json
index 9d6a05b..0cd5cd2 100644
--- a/roles/nginx/tasks/main.json
+++ b/roles/nginx/tasks/main.json
@@ -31,26 +31,28 @@
 		"check_mode": true,
 		"community.general.ufw": {
 			"state": "enabled",
-			"register": "ufw_enable_check"
-		}
+		},
+		"register": "ufw_enable_check"
 	},
 	{
+		"when": "not ufw_enable_check.changed",
 		"name": "Allow port 80 in ufw",
+		"become": true,
 		"community.general.ufw": {
 			"rule": "allow",
 			"port": "80",
 			"proto": "tcp"
-		},
-		"when": "not ufw_enable_check.changed"
+		}
 	},
 	{
+		"when": "not ufw_enable_check.changed",
 		"name": "Allow port 443 in ufw",
+		"become": true,
 		"community.general.ufw": {
 			"rule": "allow",
 			"port": "443",
 			"proto": "tcp"
-		},
-		"when": "not ufw_enable_check.changed"
+		}
 	},
 	{
 		"name": "restart service",