diff --git a/roles/debian-base/defaults/main.yaml b/roles/debian-base/defaults/main.yaml
index 9ab7a53..e20ded9 100644
--- a/roles/debian-base/defaults/main.yaml
+++ b/roles/debian-base/defaults/main.yaml
@@ -1,4 +1,4 @@
-vn_witness: false
+vn_no_witness: false
 default_user: user
 fail2ban:
   email: "{{ sysadmin_mail }}"
diff --git a/roles/debian-base/tasks/root.yml b/roles/debian-base/tasks/root.yml
index 0f4ce1d..96d504c 100644
--- a/roles/debian-base/tasks/root.yml
+++ b/roles/debian-base/tasks/root.yml
@@ -1,5 +1,5 @@
 - name: Generate root password
-  when: vn_witness
+  when: vn_no_witness
   block:
     - name: Search root password into Passbolt
       set_fact:
diff --git a/roles/debian-base/tasks/ssh.yml b/roles/debian-base/tasks/ssh.yml
index 7afa54a..33a3a34 100644
--- a/roles/debian-base/tasks/ssh.yml
+++ b/roles/debian-base/tasks/ssh.yml
@@ -3,7 +3,7 @@
     path: "/etc/ssh/ssh_host_{{ item.type }}_key"
     type: "{{ item.type }}"
     force: yes
-  when: vn_witness
+  when: vn_no_witness
   loop:
     - { type: 'rsa' }
     - { type: 'ecdsa' }
diff --git a/roles/debian-base/tasks/witness.yml b/roles/debian-base/tasks/witness.yml
index 75e7179..ebeaddf 100644
--- a/roles/debian-base/tasks/witness.yml
+++ b/roles/debian-base/tasks/witness.yml
@@ -4,9 +4,9 @@
   register: keys_generated_marker
 - name: Generate variable if not exists
   set_fact:
-    vn_witness: "{{ not keys_generated_marker.stat.exists }}"
+    vn_no_witness: "{{ not keys_generated_marker.stat.exists }}"
 - name: Create marker file to indicate vn happends
   file:
     path: /etc/vn.witness
     state: touch
-  when: vn_witness
+  when: vn_no_witness