diff --git a/services/vault/scripts/vault_k8s_auth_configure.sh b/services/vault/scripts/vault_k8s_auth_configure.sh
index 46086cf..daf48b3 100644
--- a/services/vault/scripts/vault_k8s_auth_configure.sh
+++ b/services/vault/scripts/vault_k8s_auth_configure.sh
@@ -124,6 +124,12 @@ path "sys/policies/acl" {
 path "sys/policies/acl/*" {
   capabilities = ["create", "update", "read"]
 }
+path "sys/internal/ui/mounts" {
+  capabilities = ["read"]
+}
+path "sys/mounts" {
+  capabilities = ["read"]
+}
 path "sys/mounts/auth/*" {
   capabilities = ["read", "update", "sudo"]
 }