diff --git a/defaults/main.yml b/defaults/main.yml
index 567bcf7..f70fa36 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -14,9 +14,11 @@ podman_user_homedir: /home/{{ podman_user }}
 podman_auto_update: true
 
 # List of quadlets to deploy
-podman_quadlets: []
+podman_quadlets_rootless: []
 # Example:
 # podman_quadlets:
 #   - uptime-kuma.network
 #   - uptime-kuma.container
 #   - signal-cli-rest-api.container
+
+podman_quadlets_rootful: []
diff --git a/handlers/main.yml b/handlers/main.yml
index e6192b6..bab0782 100644
--- a/handlers/main.yml
+++ b/handlers/main.yml
@@ -1,7 +1,7 @@
 ---
 # handlers file for podman
 
-- name: Start or restart quadlets
+- name: Start or restart rootless quadlets
   ansible.builtin.systemd_service:
     name: "{{ unit }}"
     state: "{{ 'restarted' if item.changed else 'started' }}"
@@ -10,13 +10,32 @@
     scope: user
   become: true
   become_user: "{{ podman_user }}"
-  loop: "{{ deployed_quadlets.results }}"
+  loop: "{{ deployed_quadlets_rootless.results }}"
   loop_control:
     label: "{{ unit }}"
   vars:
     unit: >-
       {{
-        item.item.filename | default(item.item) | ansible.builtin.basename |
+        item.item | ansible.builtin.basename |
+        ansible.builtin.regex_replace('\.container$', '.service') |
+        ansible.builtin.regex_replace('\.network$', '-network.service') |
+        ansible.builtin.regex_replace('\.volume$', '-volume.service')
+      }}
+
+- name: Start or restart rootful quadlets
+  ansible.builtin.systemd_service:
+    name: "{{ unit }}"
+    state: "{{ 'restarted' if item.changed else 'started' }}"
+    daemon_reload: true
+    enabled: true
+  become: true
+  loop: "{{ deployed_quadlets_rootful.results }}"
+  loop_control:
+    label: "{{ unit }}"
+  vars:
+    unit: >-
+      {{
+        item.item | ansible.builtin.basename |
         ansible.builtin.regex_replace('\.container$', '.service') |
         ansible.builtin.regex_replace('\.network$', '-network.service') |
         ansible.builtin.regex_replace('\.volume$', '-volume.service')
diff --git a/tasks/config.yml b/tasks/config.yml
index 391b32a..b383df3 100644
--- a/tasks/config.yml
+++ b/tasks/config.yml
@@ -1,15 +1,24 @@
 ---
 # tasks file for podman
 
-- name: Disable global podman auto-update
-  ansible.builtin.systemd_service:
-    name: podman-auto-update.timer
-    enabled: false
+- name: Create dedicated group
+  ansible.builtin.group:
+    name: "{{ podman_user }}"
+  become: true
+
+- name: Create dedicated user
+  ansible.builtin.user:
+    name: "{{ podman_user }}"
+    comment: Dedicated Podman user
+    home: "{{ podman_user_homedir }}"
+    password_lock: true
+    shell: /bin/bash
+    group: podman
   become: true
 
 - name: Enable lingering for podman user
   ansible.builtin.command:
-    cmd: "{{ item }}"
+    cmd: "{{ item }}"
     creates: /var/lib/systemd/linger/{{ podman_user }}
   become: true
   loop:
diff --git a/tasks/main.yml b/tasks/main.yml
index 6aa1c95..d124e9a 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -1,17 +1,25 @@
 ---
 # tasks file for podman
 
-- name: Import prepare tasks
-  ansible.builtin.import_tasks:
-    file: prepare.yml
+- name: Install packages
+  ansible.builtin.dnf:
+    name: "{{ podman_packages }}"
+  become: true
 
 - name: Import configuration tasks
   ansible.builtin.import_tasks:
     file: config.yml
+  when: podman_quadlets_rootless | length > 0
 
-- name: Import management tasks
+- name: Import management tasks for rootless quadlets
   ansible.builtin.import_tasks:
-    file: manage.yml
+    file: manage_rootless.yml
+  when: podman_quadlets_rootless | length > 0
+
+- name: Import management tasks for rootful quadlets
+  ansible.builtin.import_tasks:
+    file: manage_rootful.yml
+  when: podman_quadlets_rootful | length > 0
 
 - name: Flush handlers
   ansible.builtin.meta: flush_handlers
diff --git a/tasks/manage.yml b/tasks/manage.yml
deleted file mode 100644
index fc05408..0000000
--- a/tasks/manage.yml
+++ /dev/null
@@ -1,64 +0,0 @@
----
-# tasks file for podman
-
-#- name: List current quadlets
-#  ansible.builtin.find:
-#    paths: "{{ podman_user_homedir }}/.config/containers/systemd"
-#  become: true
-#  register: current_quadlets
-#
-#- name: Extract list of undefined quadlets
-#  ansible.builtin.set_fact:
-#    podman_quadlets_undefined: >-
-#      {{
-#        current_quadlets.files |
-#        map(attribute='path') |
-#        map('ansible.builtin.basename') |
-#        ansible.builtin.difference(podman_qualets_filenames)
-#      }}
-#  vars:
-#    podman_qualets_filenames: "{{ podman_quadlets | map('ansible.builtin.basename') }}"
-#
-#- name: Stop unwanted quadlets
-#  ansible.builtin.systemd_service:
-#    name: "{{ unit }}"
-#    state: stopped
-#    daemon_reload: true
-#    scope: user
-#  become: true
-#  become_user: "{{ podman_user }}"
-#  loop: "{{ podman_quadlets_undefined }}"
-#  loop_control:
-#    label: "{{ unit }}"
-#  vars:
-#    unit: >-
-#      {{
-#        item | ansible.builtin.basename |
-#        ansible.builtin.regex_replace('\.container$', '.service') |
-#        ansible.builtin.regex_replace('\.network$', '-network.service') |
-#        ansible.builtin.regex_replace('\.volume$', '-volume.service')
-#      }}
-#
-#- name: Remove undefined quadlets
-#  ansible.builtin.file:
-#    path: "{{ podman_user_homedir }}/.config/containers/systemd/{{ item }}"
-#    state: absent
-#  become: true
-#  loop: "{{ podman_quadlets_undefined }}"
-
-- name: Deploy quadlets
-  ansible.builtin.template:
-    src: "{{ item.template | default(item) }}.j2"
-    dest: "{{ podman_user_homedir }}/.config/containers/systemd/{{ item.filename | default(item) | ansible.builtin.basename }}"
-    owner: "{{ podman_user }}"
-    group: "{{ podman_user }}"
-    mode: u=rw,g=r,o=
-  become: true
-  loop: "{{ podman_quadlets }}"
-  loop_control:
-    label: "{{ item.filename | default(item) }}"
-  register: deployed_quadlets
-  notify: Start or restart quadlets
-
-- name: Flush handlers
-  ansible.builtin.meta: flush_handlers
diff --git a/tasks/manage_rootful.yml b/tasks/manage_rootful.yml
new file mode 100644
index 0000000..85821df
--- /dev/null
+++ b/tasks/manage_rootful.yml
@@ -0,0 +1,17 @@
+---
+# tasks file for podman
+
+- name: Deploy rootful quadlets
+  ansible.builtin.template:
+    src: "{{ item }}.j2"
+    dest: "/etc/containers/systemd/{{ item | ansible.builtin.basename }}"
+    owner: root
+    group: root
+    mode: u=rw,g=r,o=
+  become: true
+  loop: "{{ podman_quadlets_rootful }}"
+  register: deployed_quadlets_rootful
+  notify: Start or restart rootful quadlets
+
+- name: Flush handlers
+  ansible.builtin.meta: flush_handlers
diff --git a/tasks/manage_rootless.yml b/tasks/manage_rootless.yml
new file mode 100644
index 0000000..f21542c
--- /dev/null
+++ b/tasks/manage_rootless.yml
@@ -0,0 +1,59 @@
+---
+# tasks file for podman
+
+- name: List current rootless quadlets
+  ansible.builtin.find:
+    paths: "{{ podman_user_homedir }}/.config/containers/systemd"
+  become: true
+  register: current_quadlets
+
+- name: Extract list of undefined quadlets
+  ansible.builtin.set_fact:
+    podman_quadlets_undefined: >-
+      {{
+        current_quadlets.files |
+        map(attribute='path') |
+        map('ansible.builtin.basename') |
+        ansible.builtin.difference(podman_qualets_filenames)
+      }}
+  vars:
+    podman_qualets_filenames: "{{ podman_quadlets_rootless | map('ansible.builtin.basename') }}"
+
+- name: Stop unwanted rootless quadlets
+  ansible.builtin.systemd_service:
+    name: "{{ unit }}"
+    state: stopped
+    daemon_reload: true
+    scope: user
+  become: true
+  become_user: "{{ podman_user }}"
+  loop: "{{ podman_quadlets_undefined }}"
+  loop_control:
+    label: "{{ unit }}"
+  vars:
+    unit: >-
+      {{
+        item | ansible.builtin.basename |
+        ansible.builtin.regex_replace('\.container$', '.service') |
+        ansible.builtin.regex_replace('\.network$', '-network.service') |
+        ansible.builtin.regex_replace('\.volume$', '-volume.service')
+      }}
+
+- name: Remove undefined rootless quadlets
+  ansible.builtin.file:
+    path: "{{ podman_user_homedir }}/.config/containers/systemd/{{ item }}"
+    state: absent
+  become: true
+  loop: "{{ podman_quadlets_undefined }}"
+
+- name: Deploy rootless quadlets
+  ansible.builtin.template:
+    src: "{{ item }}.j2"
+    dest: "{{ podman_user_homedir }}/.config/containers/systemd/{{ item | ansible.builtin.basename }}"
+    owner: "{{ podman_user }}"
+    group: "{{ podman_user }}"
+    mode: u=rw,g=r,o=
+  become: true
+  loop: "{{ podman_quadlets_rootless }}"
+  register: deployed_quadlets_rootless
+  notify: Start or restart rootless quadlets
diff --git a/tasks/prepare.yml b/tasks/prepare.yml
deleted file mode 100644
index 9a8f892..0000000
--- a/tasks/prepare.yml
+++ /dev/null
@@ -1,22 +0,0 @@
----
-# tasks file for podman
-
-- name: Install packages
-  ansible.builtin.dnf:
-    name: "{{ podman_packages }}"
-  become: true
-
-- name: Create dedicated group
-  ansible.builtin.group:
-    name: "{{ podman_user }}"
-  become: true
-
-- name: Create dedicated user
-  ansible.builtin.user:
-    name: "{{ podman_user }}"
-    comment: Dedicated Podman user
-    home: "{{ podman_user_homedir }}"
-    password_lock: true
-    shell: /bin/bash
-    group: podman
-  become: true