diff --git a/roles/hardening/tasks/main.yml b/roles/hardening/tasks/main.yml
index cddd4d264f998a510dc9cda63223aada63cb21e1..623e98e97c40a46f7b6a44ae8eea2aebc0d34cc4 100644
--- a/roles/hardening/tasks/main.yml
+++ b/roles/hardening/tasks/main.yml
@@ -7,6 +7,7 @@
 
 - name: set ptrace scope, restrict ptrace to CAP_SYS_PTRACE
   copy: src=50-ptrace-restrict.conf dest=/etc/sysctl.d/50-ptrace-restrict.conf owner=root group=root mode=0644
+  when: "'buildservers' not in group_names"
   notify:
     - apply sysctl settings