diff --git a/vault/policy_store.go b/vault/policy_store.go
index bb2bd5daccad..5e74a92b611d 100644
--- a/vault/policy_store.go
+++ b/vault/policy_store.go
@@ -115,16 +115,22 @@ path "sys/wrapping/unwrap" {
 
 # Allow general purpose tools
 path "sys/tools/hash" {
-	capabilities = ["update"]
+    capabilities = ["update"]
 }
 path "sys/tools/hash/*" {
-	capabilities = ["update"]
+    capabilities = ["update"]
 }
 path "sys/tools/random" {
-	capabilities = ["update"]
+    capabilities = ["update"]
 }
 path "sys/tools/random/*" {
-	capabilities = ["update"]
+    capabilities = ["update"]
+}
+
+# Allow checking the status of a Control Group request if the user has the
+# accessor
+path "sys/control-group/request" {
+    capabilities = ["update"]
 }
 `
 )