diff --git a/.ansible-freeipa.metadata b/.ansible-freeipa.metadata
index c58e727..1ba2486 100644
--- a/.ansible-freeipa.metadata
+++ b/.ansible-freeipa.metadata
@@ -1 +1 @@
-5d09d3b590e8568d04edb288c9c515e308f3168f SOURCES/ansible-freeipa-0.1.12.tar.gz
+7c66c505597de97501d68c81fc1495aa4d627879 SOURCES/ansible-freeipa-0.3.2.tar.gz
diff --git a/.gitignore b/.gitignore
index 7591236..31eae4b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/ansible-freeipa-0.1.12.tar.gz
+SOURCES/ansible-freeipa-0.3.2.tar.gz
diff --git a/SPECS/ansible-freeipa.spec b/SPECS/ansible-freeipa.spec
index 211f159..461de1c 100644
--- a/SPECS/ansible-freeipa.spec
+++ b/SPECS/ansible-freeipa.spec
@@ -1,23 +1,23 @@
 # Turn off automatic python byte compilation because these are Ansible
 # roles and the files are transferred to the node and compiled there with
-# the python verison used in the node
+# the python version used in the node
 %define __brp_python_bytecompile %{nil}
 
+%global python %{__python3}
+
 Summary: Roles and playbooks to deploy FreeIPA servers, replicas and clients
 Name: ansible-freeipa
-Version: 0.1.12
+Version: 0.3.2
 Release: 1%{?dist}
 URL: https://github.com/freeipa/ansible-freeipa
 License: GPLv3+
 Source: https://github.com/freeipa/ansible-freeipa/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
 BuildArch: noarch
 
-#Requires: ansible
-
 %description
 ansible-freeipa provides Ansible roles and playbooks to install and uninstall
-FreeIPA servers, replicas and clients. Also modules for group, host, topology
-and user management.
+FreeIPA servers, replicas and clients. Also modules for management.
+
 
 Note: The ansible playbooks and roles require a configured ansible environment
 where the ansible nodes are reachable and are properly set up to have an IP
@@ -29,6 +29,10 @@ Features
 - Cluster deployments: Server, replicas and clients in one playbook
 - One-time-password (OTP) support for client installation
 - Repair mode for clients
+- Backup and restore, also to and from controller
+- Modules for config management
+- Modules for delegation management
+- Modules for dns config management
 - Modules for dns forwarder management
 - Modules for dns record management
 - Modules for dns zone management
@@ -38,12 +42,18 @@ Features
 - Modules for hbacsvcgroup management
 - Modules for host management
 - Modules for hostgroup management
+- Modules for location management
+- Modules for permission management
+- Modules for privilege management
 - Modules for pwpolicy management
+- Modules for role management
+- Modules for self service management
 - Modules for service management
 - Modules for sudocmd management
 - Modules for sudocmdgroup management
 - Modules for sudorule management
 - Modules for topology management
+- Modules fot trust management
 - Modules for user management
 - Modules for vault management
 
@@ -85,18 +95,35 @@ Work is planned to have a new method to handle CSR for external signed CAs in
 a separate step before starting the server installation.
 
 
+%package tests
+Summary: ansible-freeipa tests
+Requires: %{name} = %{version}-%{release}
+
+%description tests
+ansible-freeipa tests.
+
+Please have a look at %{_datadir}/ansible-freeipa/requirements-tests.txt
+to get the needed requrements to run the tests.
+
+
 %prep
 %setup -q
 # Do not create backup files with patches
+
 # Fix python modules and module utils:
 # - Remove shebang
 # - Remove execute flag
 for i in roles/ipa*/library/*.py roles/ipa*/module_utils/*.py plugins/*/*.py; do
-    sed -i '/\/usr\/bin\/python*/d' $i
+    sed -i '1{/\/usr\/bin\/python*/d;}' $i
     chmod a-x $i
 done
-# Add execute flag to py3test.py scripts
-chmod a+x roles/ipa*/files/py3test.py
+
+for i in utils/*.py utils/ansible-ipa-*-install utils/new_module \
+         utils/changelog utils/ansible-doc-test;
+do
+    sed -i '{s@/usr/bin/python*@%{python}@}' $i
+done
+
 
 %build
 
@@ -108,20 +135,157 @@ cp -rp roles/ipareplica %{buildroot}%{_datadir}/ansible/roles/
 cp -rp roles/ipareplica/README.md README-replica.md
 cp -rp roles/ipaclient %{buildroot}%{_datadir}/ansible/roles/
 cp -rp roles/ipaclient/README.md README-client.md
+cp -rp roles/ipabackup %{buildroot}%{_datadir}/ansible/roles/
+cp -rp roles/ipabackup/README.md README-backup.md
 install -m 755 -d %{buildroot}%{_datadir}/ansible/plugins/
 cp -rp plugins/* %{buildroot}%{_datadir}/ansible/plugins/
 
+install -m 755 -d %{buildroot}%{_datadir}/ansible-freeipa
+cp requirements*.txt %{buildroot}%{_datadir}/ansible-freeipa/
+cp -rp utils %{buildroot}%{_datadir}/ansible-freeipa/
+install -m 755 -d %{buildroot}%{_datadir}/ansible-freeipa/tests
+cp -rp tests %{buildroot}%{_datadir}/ansible-freeipa/
+
 %files
 %license COPYING
 %{_datadir}/ansible/roles/ipaserver
 %{_datadir}/ansible/roles/ipareplica
 %{_datadir}/ansible/roles/ipaclient
+%{_datadir}/ansible/roles/ipabackup
 %{_datadir}/ansible/plugins/module_utils
 %{_datadir}/ansible/plugins/modules
 %doc README*.md
 %doc playbooks
+%{_datadir}/ansible-freeipa/requirements.txt
+%{_datadir}/ansible-freeipa/requirements-dev.txt
+%{_datadir}/ansible-freeipa/utils
+
+%files tests
+%{_datadir}/ansible-freeipa/tests
+%{_datadir}/ansible-freeipa/requirements-tests.txt
 
 %changelog
+* Mon Jan 18 2021 Thomas Woerner <twoerner@redhat.com> - 0.3.2-1
+- Update to version 0.3.2
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.2
+  Related: RHBZ#1891826
+- Not able to add additional privileges with existing privilege in role module
+  Resolves: RHBZ#1893678
+- Required error message while adding non-existing members in role handling
+  Resolves: RHBZ#1893679
+- Not able to add new members with existing members role handling
+  Resolves: RHBZ#1893684
+- service members are removed while updating other members in role handling
+  Resolves: RHBZ#1893685
+- after changing the vault type from standard to symmetric, Salt is missing
+  Resolves: RHBZ#1880367
+- After changing the vault type from symmetric to asymmetric, Salt is present
+  in the asymmetric vault
+  Resolves: RHBZ#1880377
+- After changing the vault type from asymmetric to the standard vault, the
+  Public key is present in the standard vault
+  Resolves: RHBZ#1880378
+- Not able to replace public-key-file to the public-key in asymmetric vault
+  type
+  Resolves: RHBZ#1880862
+- ipauser module does not seem to support --check flag to ansible-playbook
+  Resolves: RHBZ#1893675
+- Not able to add additional attributes with existing attributes in permission
+  handling
+  Resolves: RHBZ#1893687
+- Privilege variable is removed from permission handling
+  Resolves: RHBZ#1893688
+
+* Wed Dec  2 2020 Thomas Woerner <twoerner@redhat.com> - 0.3.1-1
+- Update to version 0.3.1
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.1
+  Related: RHBZ#1891826
+- ipabackup: Fix undefined vars for conditions in shell tasks without else
+  Related: RHBZ#1894494
+
+* Tue Dec  1 2020 Thomas Woerner <twoerner@redhat.com> - 0.3.0-2
+- Ship ipabackup role for backup and restore
+  Related: RHBZ#1894494
+
+* Thu Nov 26 2020 Thomas Woerner <twoerner@redhat.com> - 0.3.0-1
+- Update to version 0.3.0
+  https://github.com/freeipa/ansible-freeipa/releases/tag/v0.3.0
+  With tests sub package
+  Resolves: RHBZ#1891826
+- Support for firewalld zone in ipaserver and ipareplica roles 
+  Resolves: RHBZ#1894488
+- ipagroup: Add support for the IPA CLI option `posix`
+  Resolves: RHBZ#1894493
+- New ipabackup role for backup and restore
+  Resolves: RHBZ#1894494
+- New management module ipadelegation
+  Resolves: RHBZ#1894496
+- New management module ipalocation
+  Resolves: RHBZ#1894497
+- New management module ipaprivilege
+  Resolves: RHBZ#1894498
+- New management module ipapermission
+  Resolves: RHBZ#1894499
+- New management module iparole
+  Resolves: RHBZ#1894500
+- New management module ipaselfservice
+  Resolves: RHBZ#1894501
+- New management module ipatrust
+  Resolves: RHBZ#1894502
+- Fixed log of vault data return when retrieving to a file
+  Resolves: RHBZ#1875378
+- ipadnszone: Fix modification o SOA serial with other attributes
+  Resolves: RHBZ#1876896
+- Fix symmetric vault password change when using password_files
+  Resolves: RHBZ#1879004
+- ipadnsrecord: fix record modification behavior
+  Resolves: RHBZ#1880409
+  Resolves: RHBZ#1881452
+- ipadnsrecord: fix record update when multiple records exist
+  Resolves: RHBZ#1881436
+
+* Tue Aug 18 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-6
+- Allow to manage multiple dnszone entries
+  Resolves: RHBZ#1845058
+- Fixed error msgs on FreeIPABaseModule subclasses
+  Resolves: RHBZ#1845051
+- Fix `allow_create_keytab_host` in service module
+  Resolves: RHBZ#1868020
+- Modified return value for ipavault module
+  Resolves: RHBZ#1867909
+- Add support for option `name_from_ip` in ipadnszone module
+  Resolves: RHBZ#1845056
+- Fixe password behavior on Vault module
+  Resolves: RHBZ#1839200
+
+* Tue Jul 14 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-5
+- ipareplica: Fix failure while deploying KRA
+  Resolves: RHBZ#1855299
+
+* Thu Jul 02 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-4
+- ipa[server,replica]: Fix pkcs12 info regressions introduced with CA-less
+  Resolves: RHBZ#1853284
+
+* Wed Jul 01 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-3
+- action_plugins/ipaclient_get_otp: Discovered python needed in task_vars
+  Resolves: RHBZ#1852714
+
+* Mon Jun 29 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-2
+- Fixes service disable when service has no certificates attached
+  Resolves: RHBZ#1836294
+- Add suppport for changing password of symmetric vaults
+  Resolves: RHBZ#1839197
+- Fix forwardzone issues
+  Resolves: RHBZ#1843826
+  Resolves: RHBZ#1843828
+  Resolves: RHBZ#1843829
+  Resolves: RHBZ#1843830
+  Resolves: RHBZ#1843831
+- ipa[host]group: Fix membermanager unknow user issue
+  Resolves: RHBZ#1848426
+- ipa[user,host]: Fail on duplucate names in the users and hosts lists
+  Resolves: RHBZ#1822683
+
 * Mon Jun 15 2020 Thomas Woerner <twoerner@redhat.com> - 0.1.12-1
 - Update to version 0.1.12 bug fix only release
   Related: RHBZ#1818768