diff --git a/ironic/common/policy.py b/ironic/common/policy.py
index 5ffb373abb..05b2d68be7 100644
--- a/ironic/common/policy.py
+++ b/ironic/common/policy.py
@@ -586,7 +586,7 @@ node_policies = [
     ),
     policy.DocumentedRuleDefault(
         name='baremetal:node:update_owner_provisioned',
-        check_str=SYSTEM_MEMBER,
+        check_str=SYSTEM_ADMIN,
         scope_types=['system'],
         description='Update Node owner even when Node is provisioned',
         operations=[{'path': '/nodes/{node_ident}', 'method': 'PATCH'}],
@@ -878,7 +878,7 @@ node_policies = [
     ),
     policy.DocumentedRuleDefault(
         name='baremetal:node:disable_cleaning',
-        check_str=SYSTEM_MEMBER,
+        check_str=SYSTEM_ADMIN,
         scope_types=['system'],
         description='Disable Node disk cleaning',
         operations=[