diff --git a/group_vars/all.yml b/group_vars/all.yml
index e10258f..1421fd0 100644
--- a/group_vars/all.yml
+++ b/group_vars/all.yml
@@ -1,10 +1,6 @@
 ---
-
-# fix python path errors
-ansible_python_interpreter: "/usr/bin/env python"
-
 # set group name with gid 0
-ansible_wheel: "{% if ansible_os_family in [\"OpenBSD\"] %}wheel{% else %}root{% endif %}"
+ansible_wheel: root
 
 # mail settings
 mail_server: mail.foo.sh
@@ -13,3 +9,7 @@ mail_domain: foo.sh
 # tls protocols and ciphers
 tls_protocols: TLSv1.2
 tls_ciphers: ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
+
+# defaults for tls diretories
+tls_certs: /etc/pki/tls/certs
+tls_private: /etc/pki/tls/private