diff --git a/charts/kyverno/templates/role.yaml b/charts/kyverno/templates/role.yaml
index 4e31125c6b..b081c3fd8b 100644
--- a/charts/kyverno/templates/role.yaml
+++ b/charts/kyverno/templates/role.yaml
@@ -16,5 +16,16 @@ rules:
   - get
   - patch
   - update
+# Allow update of Kyverno deployment annotations
+- apiGroups:
+    - apps
+  resources:
+    - deployments
+  verbs:
+    - get
+    - list
+    - patch
+    - update
+    - watch
 
 {{- end }}
diff --git a/config/install.yaml b/config/install.yaml
index 66956a064c..dc8f3be749 100644
--- a/config/install.yaml
+++ b/config/install.yaml
@@ -7153,6 +7153,16 @@ rules:
   - get
   - patch
   - update
+- apiGroups:
+  - apps
+  resources:
+  - deployments
+  verbs:
+  - get
+  - list
+  - patch
+  - update
+  - watch
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
diff --git a/config/install_debug.yaml b/config/install_debug.yaml
index c973cd2f78..997a90e961 100755
--- a/config/install_debug.yaml
+++ b/config/install_debug.yaml
@@ -7086,6 +7086,16 @@ rules:
   - get
   - patch
   - update
+- apiGroups:
+  - apps
+  resources:
+  - deployments
+  verbs:
+  - get
+  - list
+  - patch
+  - update
+  - watch
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
diff --git a/config/k8s-resource/clusterroles.yaml b/config/k8s-resource/clusterroles.yaml
index b1de7f6454..f1a4b0a4c3 100755
--- a/config/k8s-resource/clusterroles.yaml
+++ b/config/k8s-resource/clusterroles.yaml
@@ -153,4 +153,4 @@ rules:
   - list
   - patch
   - update
-  - watch
\ No newline at end of file
+  - watch
diff --git a/config/k8s-resource/roles.yaml b/config/k8s-resource/roles.yaml
index 09081a7d35..0d4f15c726 100644
--- a/config/k8s-resource/roles.yaml
+++ b/config/k8s-resource/roles.yaml
@@ -17,3 +17,14 @@ rules:
   - get
   - patch
   - update
+# Allow update of Kyverno deployment annotations
+- apiGroups:
+    - apps
+  resources:
+    - deployments
+  verbs:
+    - get
+    - list
+    - patch
+    - update
+    - watch