diff --git a/private/bpfloader.te b/private/bpfloader.te
index f8da1eba3433267f745bb2a2b22f43535ed12868..802fd516a75e3b0e519f0357b83fc8d8d210d985 100644
--- a/private/bpfloader.te
+++ b/private/bpfloader.te
@@ -14,7 +14,7 @@ allow bpfloader netd:fd use;
 # for retrieving a pinned map when bpfloader do a run time restart.
 allow bpfloader self:bpf { prog_load prog_run map_read map_write map_create };
 
-dontaudit bpfloader self:global_capability_class_set sys_admin;
+allow bpfloader self:global_capability_class_set sys_admin;
 
 ###
 ### Neverallow rules