diff --git a/roles/common/templates/etc/ssh/sshd_config.j2 b/roles/common/templates/etc/ssh/sshd_config.j2
index 6b52692..bf36834 100644
--- a/roles/common/templates/etc/ssh/sshd_config.j2
+++ b/roles/common/templates/etc/ssh/sshd_config.j2
@@ -74,7 +74,17 @@ MaxSessions 10
 # Specifies whether sshd(8) separates privileges by creating an unprivileged
 # child process to deal with incoming network traffic.
 # The default is "yes" (for security).
-UsePrivilegeSeparation yes
+{% if (ansible_facts['distribution'] == "Debian") and (ansible_facts['distribution_major_version']|int > 9) %}
+#
+# Note: (Release 7.5)
+#    Deprecated option UsePrivilegeSeparation
+#    Privilege separation has been on by default for almost 15 years
+#    sandboxing has been on by default for almost the last five
+#
+#UsePrivilegeSeparation sandbox
+{% else %}
+UsePrivilegeSeparation sandbox
+{% endif %}
 
 # The server disconnects after this time if the user has not
 # successfully logged in.