diff --git a/tools/selinux/icinga2.te b/tools/selinux/icinga2.te
index 0f50908dac3..c8fe4ef07b0 100644
--- a/tools/selinux/icinga2.te
+++ b/tools/selinux/icinga2.te
@@ -242,7 +242,18 @@ optional_policy(`
     ')
 ')
 
+########################################
+#
+# Logrotate
+#
 
+# Allow logrotate to execute the Icinga 2 binary for sending USR1 signal to reopen log files.
+optional_policy(`
+    require {
+        type logrotate_t;
+    }
+	can_exec(logrotate_t, icinga2_exec_t)
+')
 
 ########################################
 #