diff --git a/policy/modules/roles/unconfineduser.if b/policy/modules/roles/unconfineduser.if
index bfca1c7f9d..bda0d7f118 100644
--- a/policy/modules/roles/unconfineduser.if
+++ b/policy/modules/roles/unconfineduser.if
@@ -275,6 +275,42 @@ interface(`unconfined_signal',`
 	allow $1 unconfined_t:process signal;
 ')
 
+########################################
+## <summary>
+##	List unconfined domain directories
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`unconfined_list_dirs',`
+	gen_require(`
+		type unconfined_t;
+	')
+
+	list_dirs_pattern($1, unconfined_t, unconfined_t)
+')
+
+########################################
+## <summary>
+##	Read unconfined domain files.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`unconfined_read_files',`
+	gen_require(`
+		type unconfined_t;
+	')
+
+	read_files_pattern($1, unconfined_t, unconfined_t)
+')
+
 ########################################
 ## <summary>
 ##	Read unconfined domain unnamed pipes.