diff --git a/group_vars/all/vars.yml b/group_vars/all/vars.yml
index 8eea951..cb138af 100644
--- a/group_vars/all/vars.yml
+++ b/group_vars/all/vars.yml
@@ -41,6 +41,7 @@ hackmd_dbpass: "{{ vault_hackmd_dbpass }}"
 hackmd_secret: "{{ vault_hackmd_secret }}"
 
 jitsi_domain: jitsi.binary-kitchen.de
+jitsi_admin_email: exxess@binary-kitchen.de
 
 ldap_uri: ldaps://ldap.binary.kitchen
 ldap_host: ldap.binary.kitchen
diff --git a/roles/jitsi/handlers/main.yml b/roles/jitsi/handlers/main.yml
deleted file mode 100644
index ff936dd..0000000
--- a/roles/jitsi/handlers/main.yml
+++ /dev/null
@@ -1,7 +0,0 @@
----
-
-- name: Restart nginx
-  service: name=nginx state=restarted
-
-- name: Run acertmgr
-  command: /usr/bin/acertmgr
diff --git a/roles/jitsi/meta/main.yml b/roles/jitsi/meta/main.yml
deleted file mode 100644
index 8fcf724..0000000
--- a/roles/jitsi/meta/main.yml
+++ /dev/null
@@ -1,5 +0,0 @@
----
-
-dependencies:
-- { role: acertmgr }
-- { role: nginx, nginx_ssl: True }
diff --git a/roles/jitsi/tasks/main.yml b/roles/jitsi/tasks/main.yml
index e715caf..b7cb867 100644
--- a/roles/jitsi/tasks/main.yml
+++ b/roles/jitsi/tasks/main.yml
@@ -1,17 +1,38 @@
 ---
 
-- name: Ensure jitsi certificates are available
-  command: openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/nginx/ssl/{{ jitsi_domain }}.key -out /etc/nginx/ssl/{{ jitsi_domain }}.crt -days 730 -subj "/CN={{ jitsi_domain }}" creates=/etc/nginx/ssl/{{ jitsi_domain }}.crt
-  notify: Restart nginx
+- name: Ensure apt over https is available
+  apt: name=apt-transport-https
 
-- name: Configure certificate manager
-  template: src=certs.j2 dest=/etc/acertmgr/{{ jitsi_domain }}.conf
-  notify: Run acertmgr
+- name: Add Jitsi repo key
+  apt_key:
+    id: EF8B479E2DC1389C
+    url: https://download.jitsi.org/jitsi-key.gpg.key
 
-- name: Configure vhosts
-  template: src=vhost.j2 dest=/etc/nginx/sites-available/jitsi
-  notify: Restart nginx
+- name: Add Jitsi apt repo
+  apt_repository:
+    repo: deb https://download.jitsi.org stable/
+    filename: jitsi
 
-- name: Enable vhosts
-  file: src=/etc/nginx/sites-available/jitsi dest=/etc/nginx/sites-enabled/jitsi state=link
-  notify: Restart nginx
+- name: Provide debconf defaults
+  debconf:
+    name: "{{ item.name }}"
+    question: "{{ item.question }}"
+    vtype: "{{ item.vtype }}"
+    value: "{{ item.value }}"
+  with_items:
+  - { name: 'jitsi-videobridge2',    question: 'jitsi-videobridge/jvb-hostname', vtype: 'string', value: "{{ jitsi_domain }}" }
+  - { name: 'jitsi-meet-web-config', question: 'jitsi-meet/cert-choice:',        vtype: 'select', value: "Generate a new self-signed certificate (You will later get a chance to obtain a Let's encrypt certificate)" }
+
+- name: Install jitsi meet
+  apt: name=jitsi-meet
+
+- name: Predefine an email address for Let's Encrypt
+  lineinfile:
+    path: /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh
+    regexp: '^read EMAIL$'
+    line: 'EMAIL="{{ jitsi_admin_email }}"'
+
+- name: Setup Let's Encrypt
+  command:
+    cmd: /usr/share/jitsi-meet/scripts/install-letsencrypt-cert.sh
+    creates: /etc/cron.weekly/letsencrypt-renew
diff --git a/roles/jitsi/templates/certs.j2 b/roles/jitsi/templates/certs.j2
deleted file mode 100644
index 60b6040..0000000
--- a/roles/jitsi/templates/certs.j2
+++ /dev/null
@@ -1,14 +0,0 @@
----
-{{ jitsi_domain }}:
-- path: /etc/nginx/ssl/{{ jitsi_domain }}.crt
-  user: root
-  group: root
-  perm: '400'
-  format: crt,ca
-  action: '/usr/sbin/service nginx restart'
-- path: /etc/nginx/ssl/{{ jitsi_domain }}.key
-  user: root
-  group: root
-  perm: '400'
-  format: key
-  action: '/usr/sbin/service nginx restart'
diff --git a/roles/jitsi/templates/vhost.j2 b/roles/jitsi/templates/vhost.j2
deleted file mode 100644
index 1d09dd2..0000000
--- a/roles/jitsi/templates/vhost.j2
+++ /dev/null
@@ -1,27 +0,0 @@
-server {
-	listen 80;
-	listen [::]:80;
-
-	server_name {{ jitsi_domain }};
-
-	location /.well-known/acme-challenge {
-		default_type "text/plain";
-		alias /var/www/acme-challenge;
-	}
-
-	location / {
-		return 301 https://{{ jitsi_domain }}$request_uri;
-	}
-}
-
-server {
-	listen 443 ssl http2;
-	listen [::]:443 ssl http2;
-
-	server_name {{ jitsi_domain }};
-
-	ssl_certificate_key /etc/nginx/ssl/{{ jitsi_domain }}.key;
-	ssl_certificate /etc/nginx/ssl/{{ jitsi_domain }}.crt;
-
-	root /var/www/jitsi;
-}