diff --git a/roles/base/files/selinux/rsyslog-audit.pp b/roles/base/files/selinux/rsyslog-audit.pp
new file mode 100644
index 0000000000..f1a417ff5a
Binary files /dev/null and b/roles/base/files/selinux/rsyslog-audit.pp differ
diff --git a/roles/base/files/selinux/rsyslog-audit.te b/roles/base/files/selinux/rsyslog-audit.te
index 31f3a22215..a8bf497c24 100644
--- a/roles/base/files/selinux/rsyslog-audit.te
+++ b/roles/base/files/selinux/rsyslog-audit.te
@@ -1,15 +1,10 @@
 module rsyslog-audit 1.0;
 
 require {
-        type audit_log_t;
-        class file search;
-}
-
-require {
-        type audit_log_t;
-        class file ioctl;
-        class file open;
-        class file read;
+	type auditd_log_t;
+	type syslogd_t;
+	class file { getattr ioctl open read };
+	class dir { getattr search };
 }
 
 #============= syslogd_t ==============