diff --git a/gluon/policies/__init__.py b/gluon/policies/__init__.py
new file mode 100644
index 0000000..da3dd43
--- /dev/null
+++ b/gluon/policies/__init__.py
@@ -0,0 +1,25 @@
+# Copyright (c) 2016 OpenStack Foundation.
+# All Rights Reserved.
+#
+#    Licensed under the Apache License, Version 2.0 (the "License"); you may
+#    not use this file except in compliance with the License. You may obtain
+#    a copy of the License at
+#
+#         http://www.apache.org/licenses/LICENSE-2.0
+#
+#    Unless required by applicable law or agreed to in writing, software
+#    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+#    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+#    License for the specific language governing permissions and limitations
+#    under the License.
+
+
+import itertools
+
+from gluon.policies import base
+
+
+def list_rules():
+    return itertools.chain(
+        base.list_rules()
+    )
diff --git a/gluon/policies/base.py b/gluon/policies/base.py
new file mode 100644
index 0000000..e51905e
--- /dev/null
+++ b/gluon/policies/base.py
@@ -0,0 +1,37 @@
+# Copyright (c) 2016 OpenStack Foundation.
+# All Rights Reserved.
+#
+#    Licensed under the Apache License, Version 2.0 (the "License"); you may
+#    not use this file except in compliance with the License. You may obtain
+#    a copy of the License at
+#
+#         http://www.apache.org/licenses/LICENSE-2.0
+#
+#    Unless required by applicable law or agreed to in writing, software
+#    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+#    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+#    License for the specific language governing permissions and limitations
+#    under the License.
+
+
+from oslo_policy import policy
+
+rules = [
+    policy.RuleDefault('context_is_admin', 'role:admin'),
+    policy.RuleDefault('owner', 'tenant_id:%(tenant_id)s'),
+    policy.RuleDefault('admin_or_owner',
+                       'rule:context_is_admin or rule:owner'),
+    policy.RuleDefault('context_is_advsvc', 'role:advsvc'),
+    policy.RuleDefault(
+        'admin_or_network_owner',
+        'rule:context_is_admin or tenant_id:%(network:tenant_id)s'),
+    policy.RuleDefault('admin_owner_or_network_owner',
+                       'rule:owner or rule:admin_or_network_owner'),
+    policy.RuleDefault('admin_only', 'rule:context_is_admin'),
+    policy.RuleDefault('regular_user', ''),
+    policy.RuleDefault('default', 'rule:admin_or_owner')
+]
+
+
+def list_rules():
+    return rules
diff --git a/gluon/policy.py b/gluon/policy.py
index 8ae0779..4bab7b8 100644
--- a/gluon/policy.py
+++ b/gluon/policy.py
@@ -25,6 +25,7 @@ from oslo_utils import excutils
 from oslo_utils import importutils
 
 from gluon import constants
+from gluon import policies
 
 from gluon._i18n import _
 
@@ -52,6 +53,7 @@ def init(conf=cfg.CONF, policy_file=None):
     if not _ENFORCER:
         _ENFORCER = policy.Enforcer(conf, policy_file=policy_file)
         _ENFORCER.load_rules(True)
+        register_rules(_ENFORCER)
 
 
 def refresh(policy_file=None):
@@ -426,3 +428,7 @@ def check_is_advsvc(context):
     if ADVSVC_CTX_POLICY not in _ENFORCER.rules:
         return False
     return _ENFORCER.enforce(ADVSVC_CTX_POLICY, credentials, credentials)
+
+
+def register_rules(enforcer):
+    enforcer.register_defaults(policies.list_rules())