diff --git a/manifests/inspector.pp b/manifests/inspector.pp
index 4160777c..cf78fb14 100644
--- a/manifests/inspector.pp
+++ b/manifests/inspector.pp
@@ -297,6 +297,8 @@ tftpboot and httpboot setup, please include ::ironic::pxe")
 
   file { '/etc/ironic-inspector/inspector.conf':
     ensure  => 'present',
+    owner   => 'ironic-inspector',
+    group   => 'ironic-inspector',
     require => Anchor['ironic-inspector::config::begin'],
   }
 
diff --git a/releasenotes/notes/inspector-config-file-permissions-9f414647e89c7d47.yaml b/releasenotes/notes/inspector-config-file-permissions-9f414647e89c7d47.yaml
new file mode 100644
index 00000000..51f38568
--- /dev/null
+++ b/releasenotes/notes/inspector-config-file-permissions-9f414647e89c7d47.yaml
@@ -0,0 +1,4 @@
+---
+fixes:
+  - Permissions of inspector.conf are now changed to ironic-inspector user
+    and group from previous root:root.
diff --git a/spec/classes/ironic_inspector_spec.rb b/spec/classes/ironic_inspector_spec.rb
index 9d61bd2f..bcf0b55c 100644
--- a/spec/classes/ironic_inspector_spec.rb
+++ b/spec/classes/ironic_inspector_spec.rb
@@ -128,6 +128,8 @@ describe 'ironic::inspector' do
     it 'should contain file /etc/ironic-inspector/inspector.conf' do
       is_expected.to contain_file('/etc/ironic-inspector/inspector.conf').with(
         'ensure'  => 'present',
+        'owner'   => 'ironic-inspector',
+        'group'   => 'ironic-inspector',
         'require' => 'Anchor[ironic-inspector::config::begin]',
       )
     end