diff --git a/roles/core/files/sudoers b/roles/core/files/sudoers
new file mode 100644
index 0000000..7d54e99
--- /dev/null
+++ b/roles/core/files/sudoers
@@ -0,0 +1,7 @@
+root  ALL=(ALL) ALL
+%sudo ALL=(ALL) ALL
+
+Defaults env_reset
+Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
+
+#includedir /etc/sudoers.d
diff --git a/roles/core/tasks/main.yml b/roles/core/tasks/main.yml
index 3d939f9..8fe831e 100644
--- a/roles/core/tasks/main.yml
+++ b/roles/core/tasks/main.yml
@@ -6,3 +6,13 @@
     state: present
   with_items: "{{ pacman_pkgs }}"
 
+- name: Configure sudoers
+  template:
+    src: files/sudoers
+    dest: /etc/sudoers
+    mode: 0440
+
+- name: Create sudo group
+  group:
+    name: sudo
+    state: present