diff --git a/salt/manager/hypervisor/directories.sls b/salt/manager/hypervisor/directories.sls
new file mode 100644
index 000000000..3f60492f6
--- /dev/null
+++ b/salt/manager/hypervisor/directories.sls
@@ -0,0 +1,11 @@
+{% set dirs = [
+  '/nsm/libvirt/createvm'
+] %}
+
+create_libvirt_dirs:
+  file.directory:
+    - names: {{ dirs }}
+    - makedirs: True
+    - mode: 755
+    - user: root
+    - group: root
diff --git a/salt/orch/setup_hypervisor.sls b/salt/orch/setup_hypervisor.sls
new file mode 100644
index 000000000..a79e07ee5
--- /dev/null
+++ b/salt/orch/setup_hypervisor.sls
@@ -0,0 +1,66 @@
+{% set qcow2_url = 'https://yum.oracle.com/templates/OracleLinux/OL9/u5/x86_64/OL9U5_x86_64-kvm-b253.qcow2' %}
+{% set expected_sha256 = '3b00bbbefc8e78dd28d9f538834fb9e2a03d5ccdc2cadf2ffd0036c0a8f02021' %}
+{% set target_path = '/nsm/libvirt/createvm/OL9U5_x86_64-kvm-b253.qcow2' %}
+{% set master_id = salt.local.opts.get('id') %}
+
+createvm_directories:
+  salt.state:
+    - tgt: {{ master_id }}
+    - sls:
+      - manager.hypervisor.directories
+
+check_qcow2_exists:
+  salt.function:
+    - name: file.file_exists
+    - tgt: {{ master_id }}
+    - arg:
+      - {{ target_path }}
+    - require:
+      - salt: createvm_directories
+
+download_qcow2:
+  salt.function:
+    - name: cmd.run
+    - tgt: {{ master_id }}
+    - arg:
+      - curl -L {{ qcow2_url }} -o {{ target_path }}
+    - onlyif: 
+      - fun: file.file_exists
+        tgt: {{ master_id }}
+        arg:
+          - {{ target_path }}
+        expected: False
+
+verify_checksum:
+  salt.function:
+    - name: cmd.run_all
+    - tgt: {{ master_id }}
+    - arg:
+      - echo "{{ expected_sha256 }}  {{ target_path }}" | sha256sum -c
+    - require:
+      - salt: download_qcow2
+    - onlyif:
+      - fun: file.file_exists
+        tgt: {{ master_id }}
+        arg:
+          - {{ target_path }}
+
+handle_failed_verification:
+  salt.function:
+    - name: log.error
+    - tgt: {{ master_id }}
+    - arg:
+      - "Checksum verification failed for {{ target_path }}"
+    - onfail:
+      - salt: verify_checksum
+
+cleanup_failed_download:
+  salt.function:
+    - name: file.remove
+    - tgt: {{ master_id }}
+    - arg:
+      - {{ target_path }}
+    - onfail:
+      - salt: verify_checksum
+    - require:
+      - salt: verify_checksum
diff --git a/salt/reactor/check_hypervisor.sls b/salt/reactor/check_hypervisor.sls
new file mode 100644
index 000000000..b26b6d0dd
--- /dev/null
+++ b/salt/reactor/check_hypervisor.sls
@@ -0,0 +1,6 @@
+{% if data['id'].endswith(('_hypervisor', '_managerhyper')) %}
+check_and_trigger:
+  runner.state.orchestrate:
+    - args:
+        - mods: orch.setup_hypervisor
+{% endif %}