diff --git a/manifests/0000_25_kube-controller-manager-operator_07_clusteroperator.yaml b/manifests/0000_25_kube-controller-manager-operator_07_clusteroperator.yaml
index 479ba86ce..843f97ee8 100644
--- a/manifests/0000_25_kube-controller-manager-operator_07_clusteroperator.yaml
+++ b/manifests/0000_25_kube-controller-manager-operator_07_clusteroperator.yaml
@@ -38,3 +38,6 @@ status:
       resource: nodes
     - group: "certificates.k8s.io"
       resource: "certificatesigningrequests"
+    - group: "rbac.authorization.k8s.io"
+      name: "system:openshift:operator:kube-controller-manager-operator"
+      resource: "clusterrolebindings"
diff --git a/pkg/operator/starter.go b/pkg/operator/starter.go
index d437fd133..6a8023d54 100644
--- a/pkg/operator/starter.go
+++ b/pkg/operator/starter.go
@@ -238,6 +238,7 @@ func RunOperator(ctx context.Context, cc *controllercmd.ControllerContext) error
 			// TODO move to a more appropriate operator. One that creates and manages these.
 			{Resource: "nodes"},
 			{Group: "config.openshift.io", Resource: "nodes", Name: "cluster"},
+			{Group: "rbac.authorization.k8s.io", Resource: "clusterrolebindings", Name: "system:openshift:operator:kube-controller-manager-operator"},
 		},
 		configClient.ConfigV1(),
 		configInformers.Config().V1().ClusterOperators(),