diff --git a/roles/proxmox/templates/sshd_config.mgmt.j2 b/roles/proxmox/files/sshd_config.mgmt
similarity index 87%
rename from roles/proxmox/templates/sshd_config.mgmt.j2
rename to roles/proxmox/files/sshd_config.mgmt
index ac45726..ff4de22 100644
--- a/roles/proxmox/templates/sshd_config.mgmt.j2
+++ b/roles/proxmox/files/sshd_config.mgmt
@@ -2,6 +2,7 @@
 
 PidFile none
 UsePAM no
+Subsystem sftp /usr/lib/openssh/sftp-server
 
 # Only allow pubkey auth.
 KbdInteractiveAuthentication no
diff --git a/roles/proxmox/tasks/mgmt.yml b/roles/proxmox/tasks/mgmt.yml
index 672b479..e0527d0 100644
--- a/roles/proxmox/tasks/mgmt.yml
+++ b/roles/proxmox/tasks/mgmt.yml
@@ -9,9 +9,9 @@
   notify: reboot
 
 - name: Configure SSH instance in management VRF
-  template:
-    dest: /etc/ssh/sshd_config.mgmt
-    src: sshd_config.mgmt.j2
+  copy:
+    dest: /etc/ssh/
+    src: sshd_config.mgmt
     mode: 0644
   notify: reboot