diff --git a/system_server.te b/system_server.te
index 0b1ec45b726e85481d450bae90cf16c49f9174a7..69e9cb082111993cdb3cbf701770e7feaf20332a 100644
--- a/system_server.te
+++ b/system_server.te
@@ -37,6 +37,8 @@ allow system_server self:capability {
     sys_tty_config
 };
 
+allow system_server self:capability2 block_suspend;
+
 # Triggered by /proc/pid accesses, not allowed.
 dontaudit system_server self:capability sys_ptrace;