diff --git a/policy/modules/apps/chromium.te b/policy/modules/apps/chromium.te
index 2f85172f2..e0ec30722 100644
--- a/policy/modules/apps/chromium.te
+++ b/policy/modules/apps/chromium.te
@@ -96,6 +96,7 @@ allow chromium_t self:file create;
 allow chromium_t self:fifo_file rw_fifo_file_perms;
 allow chromium_t self:sem create_sem_perms;
 allow chromium_t self:netlink_kobject_uevent_socket client_stream_socket_perms;
+allow chromium_t self:user_namespace create;
 # cap_userns sys_admin for the sandbox
 allow chromium_t self:cap_userns { sys_admin sys_chroot sys_ptrace };