diff --git a/base.yml b/base.yml
new file mode 100755
index 00000000..4b1b5008
--- /dev/null
+++ b/base.yml
@@ -0,0 +1,52 @@
+#!/usr/bin/env ansible-playbook
+---
+# Set variable adm_iface for all servers
+- import_playbook: plays/get_adm_iface.yml
+
+# Common CRANS configuration for all servers
+- hosts: server
+  vars:
+    # Debian mirror on adm
+    debian_mirror: http://mirror.adm.crans.org/debian
+    debian_components: main non-free
+
+    # LDAP binding
+    ldap_base: 'dc=crans,dc=org'
+    ldap_master_ipv4: '10.231.136.19'
+    ldap_local_replica_uri:
+      - "ldap://10.231.136.38"
+      - "ldap://10.231.136.4"
+    ldap_master_uri: "ldap://{{ ldap_master_ipv4 }}"
+    ldap_user_tree: "cn=Utilisateurs,{{ ldap_base }}"
+    ldap_nslcd_bind_dn: "cn=nslcd,ou=service-users,{{ ldap_base }}"
+    ldap_nslcd_passwd: "{{ vault_ldap_nslcd_passwd }}"
+
+    # Group permissions
+    ssh_allow_groups: ssh nounou apprenti cableur root
+
+    # Scripts will tell users to go there to manage their account
+    intranet_url: 'https://intranet.crans.org/'
+
+    # Will be in /usr/scripts/
+    crans_scripts_git: "http://gitlab.adm.crans.org/nounous/scripts.git"
+
+    # NTP servers
+    ntp_servers:
+      - charybde.adm.crans.org
+      - silice.adm.crans.org
+  roles:
+    - common-tools
+    - debian-apt-sources
+    - ldap-client
+    - openssh
+    - sudo
+    - ntp-client
+    - crans-scripts
+    - root-config
+
+- import_playbook: plays/mail.yml
+- import_playbook: plays/nfs.yml
+- import_playbook: plays/logs.yml
+- import_playbook: plays/backup.yml
+- import_playbook: plays/network-interfaces.yml
+- import_playbook: plays/monitoring.yml