diff --git a/manifests/03_credentials_request_azure_file.yaml b/manifests/03_credentials_request_azure_file.yaml
index 4e3a24b60..ae5b75792 100644
--- a/manifests/03_credentials_request_azure_file.yaml
+++ b/manifests/03_credentials_request_azure_file.yaml
@@ -16,10 +16,6 @@ spec:
     apiVersion: cloudcredential.openshift.io/v1
     kind: AzureProviderSpec
     permissions:
-      - 'Microsoft.Network/networkSecurityGroups/join/action'
-      - 'Microsoft.Network/routeTables/join/action'
-      - 'Microsoft.Network/virtualNetworks/subnets/read'
-      - 'Microsoft.Network/virtualNetworks/subnets/write'
       - 'Microsoft.Storage/storageAccounts/delete'
       - 'Microsoft.Storage/storageAccounts/fileServices/read'
       - 'Microsoft.Storage/storageAccounts/fileServices/shares/delete'
@@ -28,6 +24,27 @@ spec:
       - 'Microsoft.Storage/storageAccounts/listKeys/action'
       - 'Microsoft.Storage/storageAccounts/read'
       - 'Microsoft.Storage/storageAccounts/write'
+      - 'Microsoft.Network/virtualNetworks/join/action'
+      - 'Microsoft.Network/virtualNetworks/subnets/join/action'
+      - 'Microsoft.Network/virtualNetworks/subnets/write'
+      - 'Microsoft.Network/virtualNetworks/subnets/read'
+      - 'Microsoft.Network/virtualNetworks/subnets/*/read'
+      - 'Microsoft.Network/privateEndpoints/write'
+      - 'Microsoft.Network/privateEndpoints/read'
+      - 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups/write'
+      - 'Microsoft.Network/privateDnsZones/write'
+      - 'Microsoft.Network/privateDnsZones/virtualNetworkLinks/write'
+      - 'Microsoft.Network/privateDnsZones/virtualNetworkLinks/read'
+      - 'Microsoft.Network/privateDnsZones/read'
+      - 'Microsoft.Network/privateDnsOperationStatuses/read'
+      - 'Microsoft.Network/locations/operations/read'
+      - 'Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action'
+      - 'Microsoft.Network/serviceEndpointPolicies/join/action'
+      - 'Microsoft.Network/natGateways/join/action'
+      - 'Microsoft.Network/networkIntentPolicies/join/action'
+      - 'Microsoft.Network/networkSecurityGroups/join/action'
+      - 'Microsoft.Network/routeTables/join/action'
+      - 'Microsoft.Network/networkManagers/ipamPools/associateResourcesToPool/action'
   secretRef:
     name: azure-file-credentials
     namespace: openshift-cluster-csi-drivers