diff --git a/roles/base/files/selinux/rsyslog-audit.pp b/roles/base/files/selinux/rsyslog-audit.pp
index f1a417ff5a..41d0b6acd7 100644
Binary files a/roles/base/files/selinux/rsyslog-audit.pp and b/roles/base/files/selinux/rsyslog-audit.pp differ
diff --git a/roles/base/files/selinux/rsyslog-audit.te b/roles/base/files/selinux/rsyslog-audit.te
index a8bf497c24..cf8e03b337 100644
--- a/roles/base/files/selinux/rsyslog-audit.te
+++ b/roles/base/files/selinux/rsyslog-audit.te
@@ -1,12 +1,12 @@
-module rsyslog-audit 1.0;
+module rsyslog-audit 1.1;
 
 require {
 	type auditd_log_t;
 	type syslogd_t;
 	class file { getattr ioctl open read };
-	class dir { getattr search };
+	class dir { getattr read search };
 }
 
 #============= syslogd_t ==============
-allow syslogd_t auditd_log_t:dir { getattr search };
+allow syslogd_t auditd_log_t:dir { getattr read search };
 allow syslogd_t auditd_log_t:file { getattr ioctl open read };