diff --git a/policy/modules/services/certmaster.te b/policy/modules/services/certmaster.te
index d72a997..3de5319 100644
--- a/policy/modules/services/certmaster.te
+++ b/policy/modules/services/certmaster.te
@@ -1,5 +1,5 @@
 
-policy_module(certmaster, 1.0.0)
+policy_module(certmaster, 1.0.1)
 
 ########################################
 #
@@ -26,11 +26,11 @@ type certmaster_var_run_t;
 files_pid_file(certmaster_var_run_t)
 
 ###########################################
-#			  
-# certmaster local policy 
+#
+# certmaster local policy
 #
 
-allow certmaster_t self:capability sys_tty_config;
+allow certmaster_t self:capability { dac_read_search dac_override sys_tty_config };
 allow certmaster_t self:tcp_socket create_stream_socket_perms;
 
 # config files