diff --git a/tasks/main.yml b/tasks/main.yml
index eff864b..534451b 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -9,7 +9,7 @@
     - python-ldap
 
 - name: fix acl
-  ldap_attr:
+  ldap_attrs:
     name: olcAccess
     dn: olcDatabase={1}mdb,cn=config
     state: exact
@@ -27,7 +27,7 @@
       by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write
       by * read
 - name: set crypto
-  ldap_attr:
+  ldap_attrs:
     dn: cn=config
     name: "{{item.key}}"
     state: exact
@@ -37,7 +37,7 @@
     olcPasswordCryptSaltFormat: "$6$rounds=8000$%.16s"
 
 - name: set base DN
-  ldap_attr:
+  ldap_attrs:
     dn: 'olcDatabase={{"{"+(ldap_database_index|default(1)|string)+"}"}}mdb,cn=config'
     name: "{{item.key}}"
     state: exact
@@ -62,7 +62,6 @@
     set_fact:
       root_password: '{{lookup("password", "/dev/null chars=ascii_letters,digits,hexdigits length=20")}}'
   - debug: var=root_passwort
-  - debug: var=root_passwort
   - name: add base DN
     become: yes
     become_user: openldap
@@ -73,8 +72,8 @@
         objectClass: top
         objectClass: dcObject
         objectClass: organization
-        dc: {{ldap_basedn | regex_replace('^[^=]+=([^,]+).*', '\1')}}
-        o:  {{ldap_basedn | regex_replace('^[^=]+=([^,]+).*', '\1')}}
+        dc: {{ldap_basedn | regex_replace( '^[^=]+=([^,]+).*', '\1')}}
+        o:  {{ldap_basedn | regex_replace( '^[^=]+=([^,]+).*', '\1')}}
 
         dn: ou=People,{{ldap_basedn}}
         objectClass: top
@@ -94,7 +93,7 @@
         structuralObjectClass: organizationalRole
         cn: root
         description: LDAP administrator
-        userPassword: highsecure
+        userPassword: {{root_password}}
 
 #  - name: update in ldap.conf
 #    lineinfile: