diff --git a/inventory/group_vars/all.yml b/inventory/group_vars/all.yml
index 0fe0dd5e5a9b6f92b4cd7a006301083f6e8f4c1f..45912786b7b004864936a5858bd3fff64ac8c275 100644
--- a/inventory/group_vars/all.yml
+++ b/inventory/group_vars/all.yml
@@ -5,6 +5,10 @@ bin_dir: /usr/local/bin
 # Note: ensure that you've enough disk space (about 1G)
 local_release_dir: "/tmp/releases"
 
+# This is the group that the cert creation scripts chgrp the
+# cert files to. Not really changable...
+kube_cert_group: kube-cert
+
 # Cluster Loglevel configuration
 kube_log_level: 2
 
diff --git a/roles/download/defaults/main.yml b/roles/download/defaults/main.yml
index 89f878aa00a77568bf7859419095be5f79b95d84..4598e0156f2e4e557d2604350c66014da57f7622 100644
--- a/roles/download/defaults/main.yml
+++ b/roles/download/defaults/main.yml
@@ -1,10 +1,6 @@
 ---
 local_release_dir: /tmp
 
-# This is the group that the cert creation scripts chgrp the
-# cert files to. Not really changable...
-kube_cert_group: kube-cert
-
 # Versions
 kube_version: v1.1.4
 etcd_version: v2.2.4
diff --git a/roles/kubernetes/node/defaults/main.yml b/roles/kubernetes/node/defaults/main.yml
index 1601d5598d45eea2be0efe0fac9bffc49d9e927c..24ac9732dbcdb17adba0c99e6b14ab18b4062f34 100644
--- a/roles/kubernetes/node/defaults/main.yml
+++ b/roles/kubernetes/node/defaults/main.yml
@@ -24,10 +24,6 @@ kube_users_dir: "{{ kube_config_dir }}/users"
 # pods on startup
 kube_manifest_dir: "{{ kube_config_dir }}/manifests"
 
-# This is the group that the cert creation scripts chgrp the
-# cert files to. Not really changable...
-kube_cert_group: kube-cert
-
 dns_domain: "{{ cluster_name }}"
 
 kube_proxy_mode: userspace
diff --git a/roles/kubernetes/node/tasks/main.yml b/roles/kubernetes/node/tasks/main.yml
index 387f5bf72de1327baeac10ba064c9e93fe2090ec..e34284352cac03430a609f49e669cded3390afa0 100644
--- a/roles/kubernetes/node/tasks/main.yml
+++ b/roles/kubernetes/node/tasks/main.yml
@@ -8,10 +8,6 @@
 - name: Make sure manifest directory exists
   file: path={{ kube_manifest_dir }} state=directory
 
-
-- name: certs | create system kube-cert groups
-  group: name={{ kube_cert_group }} state=present system=yes
-
 - include: secrets.yml
   tags:
     - secrets