diff --git a/aws_lb_controller.tf b/aws_lb_controller.tf
index 090d3ae..7d472c3 100644
--- a/aws_lb_controller.tf
+++ b/aws_lb_controller.tf
@@ -211,6 +211,7 @@ data "aws_iam_policy_document" "lb_controller" {
       "elasticloadbalancing:DeleteTargetGroup",
       "elasticloadbalancing:ModifyListenerAttributes",
       "elasticloadbalancing:ModifyCapacityReservation",
+      "elasticloadbalancing:ModifyIpPools"
     ]
     resources = ["*"]
 
@@ -262,6 +263,7 @@ data "aws_iam_policy_document" "lb_controller" {
       "elasticloadbalancing:AddListenerCertificates",
       "elasticloadbalancing:RemoveListenerCertificates",
       "elasticloadbalancing:ModifyRule",
+      "elasticloadbalancing:SetRulePriorities"
     ]
     resources = ["*"]
   }