diff --git a/emp/emp-aws-policies/aws-policy-2.json b/emp/emp-aws-policies/aws-policy-2.json
index 6b2acfb..ce4a235 100644
--- a/emp/emp-aws-policies/aws-policy-2.json
+++ b/emp/emp-aws-policies/aws-policy-2.json
@@ -56,6 +56,12 @@
                 "iam:PutRolePolicy",
                 "iam:RemoveRoleFromInstanceProfile",
                 "iam:UntagRole",
+                "iam:ListUserPolicies",
+                "iam:ListAttachedUserPolicies",
+                "iam:GetUserPolicy",
+                "iam:GetPolicy",
+                "iam:GetPolicyVersion",
+                "iam:SimulateCustomPolicy",
                 "elasticfilesystem:Backup",
                 "elasticfilesystem:CreateAccessPoint",
                 "elasticfilesystem:CreateFileSystem",
diff --git a/emp/emp_iam_cftemplate.yml b/emp/emp_iam_cftemplate.yml
index 52cdaf0..78d319a 100644
--- a/emp/emp_iam_cftemplate.yml
+++ b/emp/emp_iam_cftemplate.yml
@@ -218,6 +218,12 @@ Resources:
           - iam:PutRolePolicy
           - iam:RemoveRoleFromInstanceProfile
           - iam:UntagRole
+          - iam:ListUserPolicies
+          - iam:ListAttachedUserPolicies
+          - iam:GetUserPolicy
+          - iam:GetPolicy
+          - iam:GetPolicyVersion
+          - iam:SimulateCustomPolicy
           - elasticfilesystem:Backup
           - elasticfilesystem:CreateAccessPoint
           - elasticfilesystem:CreateFileSystem