diff --git a/neutron/conf/policies/rbac.py b/neutron/conf/policies/rbac.py
index a6de6790cc5..568aa7890ea 100644
--- a/neutron/conf/policies/rbac.py
+++ b/neutron/conf/policies/rbac.py
@@ -34,7 +34,7 @@ rules = [
 
     policy.DocumentedRuleDefault(
         name='create_rbac_policy',
-        check_str=base.PROJECT_MEMBER,
+        check_str=base.SYSTEM_ADMIN_OR_PROJECT_MEMBER,
         scope_types=['system', 'project'],
         description='Create an RBAC policy',
         operations=[
diff --git a/neutron/conf/policies/router.py b/neutron/conf/policies/router.py
index c7347642c70..88c33e94d9c 100644
--- a/neutron/conf/policies/router.py
+++ b/neutron/conf/policies/router.py
@@ -39,7 +39,7 @@ ACTION_GET = [
 rules = [
     policy.DocumentedRuleDefault(
         name='create_router',
-        check_str=base.PROJECT_MEMBER,
+        check_str=base.SYSTEM_ADMIN_OR_PROJECT_MEMBER,
         scope_types=['project'],
         description='Create a router',
         operations=ACTION_POST,
diff --git a/neutron/conf/policies/subnetpool.py b/neutron/conf/policies/subnetpool.py
index bd00c08d460..0605d10432e 100644
--- a/neutron/conf/policies/subnetpool.py
+++ b/neutron/conf/policies/subnetpool.py
@@ -33,7 +33,7 @@ rules = [
     ),
     policy.DocumentedRuleDefault(
         name='create_subnetpool',
-        check_str=base.PROJECT_MEMBER,
+        check_str=base.SYSTEM_ADMIN_OR_PROJECT_MEMBER,
         scope_types=['project', 'system'],
         description='Create a subnetpool',
         operations=[
diff --git a/neutron/conf/policies/trunk.py b/neutron/conf/policies/trunk.py
index 9c7d5e72636..9caa3ffc0f8 100644
--- a/neutron/conf/policies/trunk.py
+++ b/neutron/conf/policies/trunk.py
@@ -26,7 +26,7 @@ DEPRECATED_REASON = (
 rules = [
     policy.DocumentedRuleDefault(
         name='create_trunk',
-        check_str=base.PROJECT_MEMBER,
+        check_str=base.SYSTEM_ADMIN_OR_PROJECT_MEMBER,
         scope_types=['project', 'system'],
         description='Create a trunk',
         operations=[