diff --git a/sepolicy/ohos_policy/ability/ability_runtime/system/normal_hap.te b/sepolicy/ohos_policy/ability/ability_runtime/system/normal_hap.te
index dbc74c797b43e7eea4022c75a6dcab8a88318905..c364bf85984d3b081a561deb3297baaca988b1ab 100644
--- a/sepolicy/ohos_policy/ability/ability_runtime/system/normal_hap.te
+++ b/sepolicy/ohos_policy/ability/ability_runtime/system/normal_hap.te
@@ -21,3 +21,12 @@ allow normal_hap_attr system_file:file { map };
 allow normal_hap_attr sa_service_router_mgr_service:samgr_class { get };
 allow normal_hap_attr service_router:binder { call transfer };
 allow normal_hap_attr data_app_el2_file:file { append };
+allow normal_hap_attr isolated_render:dir { open };
+allow normal_hap_attr isolated_render:dir { read };
+allow normal_hap_attr isolated_render:dir { search };
+allow normal_hap_attr isolated_render:file { getattr };
+allow normal_hap_attr isolated_render:file { open };
+allow normal_hap_attr isolated_render:file { read };
+allow normal_hap_attr isolated_render:process { getsched };
+allow normal_hap_attr isolated_render:process { ptrace };
+allow normal_hap_attr isolated_render:process { signal };