diff --git a/ansible/playbooks/init-rocky-ipa-internal-dns.yml b/ansible/playbooks/init-rocky-ipa-internal-dns.yml
index a659bf4..ad68c78 100644
--- a/ansible/playbooks/init-rocky-ipa-internal-dns.yml
+++ b/ansible/playbooks/init-rocky-ipa-internal-dns.yml
@@ -18,5 +18,6 @@
     - name: "Create Reverse Domains"
       ipadnszone:
         ipaadmin_password: '{{ ipaadmin_password }}'
-        name: '{{ internal_domain }}'
+        name: '{{ item }}'
       with_items: '{{ rdns }}'
+
diff --git a/ansible/playbooks/role-rocky-ipa.yml b/ansible/playbooks/role-rocky-ipa.yml
index d9aba24..93515d5 100644
--- a/ansible/playbooks/role-rocky-ipa.yml
+++ b/ansible/playbooks/role-rocky-ipa.yml
@@ -55,3 +55,8 @@
         mode: '0644'
         owner: root
         group: root
+
+    - name: "Turn on reverse zone syncing"
+      ipadnsconfig:
+        ipaadmin_password: '{{ ipaadmin_password }}'
+        allow_sync_ptr: true
diff --git a/ansible/playbooks/tasks/harden.yml b/ansible/playbooks/tasks/harden.yml
index a45e34c..c540797 100644
--- a/ansible/playbooks/tasks/harden.yml
+++ b/ansible/playbooks/tasks/harden.yml
@@ -33,7 +33,7 @@
 
 - name: Standard login settings
   block:
-    - name: owneradd defaults
+    - name: useradd defaults
       lineinfile:
         line: "INACTIVE=30"
         regexp: "^INACTIVE=.*"
@@ -177,7 +177,7 @@
         group: root
         backup: true
       notify:
-        - regenerate_auditd rules
+        - regenerate_auditd_rules
         - restart_auditd
       tags:
         - harden