diff --git a/sepolicy/ohos_policy/ability/ability_runtime/system/foundation.te b/sepolicy/ohos_policy/ability/ability_runtime/system/foundation.te
index 12df5ce4b9b8625f39edcb0f65622a66f2e23c97..196d6b8e2e20bebcadd4014e6c0de389902c11be 100644
--- a/sepolicy/ohos_policy/ability/ability_runtime/system/foundation.te
+++ b/sepolicy/ohos_policy/ability/ability_runtime/system/foundation.te
@@ -91,5 +91,6 @@ allowxperm foundation dev_mali:chr_file ioctl {  0x8002  };
 allowxperm foundation sys_file:file ioctl {  0x5413  };
 allow foundation foundation:capability { sys_ptrace };
 allow foundation storage_manager:dir { search };
+allow foundation netmanager:binder { transfer };
 neverallow foundation *:process ptrace;
 
diff --git a/sepolicy/ohos_policy/communication/netmanager/system/netmanager.te b/sepolicy/ohos_policy/communication/netmanager/system/netmanager.te
index dd8112b6cf40e8d211505cb83cf0a3590c512ae8..b0c9e2c7484d8b97e6151dc995d522def89e6c93 100644
--- a/sepolicy/ohos_policy/communication/netmanager/system/netmanager.te
+++ b/sepolicy/ohos_policy/communication/netmanager/system/netmanager.te
@@ -19,7 +19,7 @@ allow netmanager data_data_file:file { open read };
 allow netmanager data_file:dir { remove_name rmdir search };
 allow netmanager data_init_agent:dir { search };
 allow netmanager data_init_agent:file { ioctl open read append };
-allow netmanager data_service_el1_file:dir { add_name create getattr ioctl lock open read remove_name search setattr unlink write };
+allow netmanager data_service_el1_file:dir { add_name create getattr ioctl lock open read remove_name search setattr unlink write rmdir };
 allow netmanager data_service_el1_file:file { append create getattr ioctl lock map open read setattr unlink write };
 allow netmanager data_service_file:dir { add_name create getattr ioctl lock open read remove_name search setattr unlink write };
 allow netmanager data_system:dir { add_name search write };
@@ -73,3 +73,5 @@ allowxperm netmanager netmanager:udp_socket ioctl { 0x8915 0x8916 0x891b 0x891c
 allowxperm netmanager netmanager:unix_dgram_socket ioctl { 0x8910 };
 allow netsysnative netmanager:fd { use };
 allow netsysnative netmanager:tcp_socket { read write bind getopt setopt connect };
+allow netmanager data_service_el1_file:file { rename };
+allow netmanager sa_foundation_appms:samgr_class { get };
\ No newline at end of file