diff --git a/roles/apache/tasks/main.yml b/roles/apache/tasks/main.yml
index 053242f..da11a1a 100644
--- a/roles/apache/tasks/main.yml
+++ b/roles/apache/tasks/main.yml
@@ -67,6 +67,21 @@
     group: "{{ ansible_wheel }}"
   notify: restart apache
 
+- name: fix log directory permissions
+  file:
+    path: /var/log/httpd
+    state: directory
+    mode: 0755
+    owner: root
+    group: "{{ ansible_wheel }}"
+
+- import_role:
+    name: sftpuser
+  vars:
+    chroot: "/var/log/httpd"
+    user: logsync
+    publickeys: "{{ logsync_publickeys }}"
+
 - name: enable apache
   service:
     name: httpd