diff --git a/ssh-server/templates/sshd_config_stretch.j2 b/ssh-server/templates/sshd_config_stretch.j2
index 2a7a9bc408bf022b3d8563cb5909e35e982fb5b1..da568b9854f74d00492a5072c0ef7aaee42de722 100644
--- a/ssh-server/templates/sshd_config_stretch.j2
+++ b/ssh-server/templates/sshd_config_stretch.j2
@@ -15,8 +15,11 @@ MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@op
 # HostKeys for protocol version 2
 HostKey /etc/ssh/ssh_host_rsa_key
 HostKey /etc/ssh/ssh_host_ed25519_key
+{# deprecated option in buster #}
+{% if ansible_distribution_major_version|int < 10 %}
 #Privilege Separation is turned on for security
 UsePrivilegeSeparation yes
+{% endif %}
 
 # Logging
 SyslogFacility AUTH