diff --git a/algo b/algo
index c62bf66..8e1c48e 100755
--- a/algo
+++ b/algo
@@ -1,5 +1,13 @@
 #!/bin/sh
 
+p12_export_password () {
+  echo -n "
+Enter the password for p12 certificates (default: vpn):
+: "
+  read -s P  
+  P=${P:-vpn}
+}
+
 algo_provisioning () {
   echo -n "
   What provider would you like to use?
@@ -20,12 +28,15 @@ Enter the number of your desired provider
     0) CLOUD="non-cloud" ;;
     *) exit 1 ;;
   esac  
-
-  ansible-playbook "${CLOUD}.yml"
+  
+  p12_export_password
+  
+  ansible-playbook "${CLOUD}.yml" -e easyrsa_p12_export_password=${P}
 }
 
 user_management () {
-  ansible-playbook users.yml
+  p12_export_password
+  ansible-playbook users.yml -e easyrsa_p12_export_password=${P}
 }
 
 case "$1" in
diff --git a/config.cfg b/config.cfg
index c17bbf4..4daa91a 100644
--- a/config.cfg
+++ b/config.cfg
@@ -3,7 +3,6 @@
 easyrsa_dir: /opt/easy-rsa-ipsec
 easyrsa_ca_expire: 3650
 easyrsa_cert_expire: 3650
-easyrsa_p12_export_password: vpn
 
 # If True re-init all existing certificates. (True or False)
 easyrsa_reinit_existent: False