diff --git a/modules/vpc/iam/main.tf b/modules/vpc/iam/main.tf
index df647a4..e7d8fe3 100644
--- a/modules/vpc/iam/main.tf
+++ b/modules/vpc/iam/main.tf
@@ -28,8 +28,7 @@ data "aws_iam_policy_document" "this" {
         "ec2:RevokeSecurityGroupIngress",
         "ec2:RevokeSecurityGroupEgress",
         "ec2:ModifySecurityGroupRules",
-        "ec2:CreateNetworkInterface",
-        "ec2:DetachNetworkInterface",
+        "ec2:*NetworkInterface",
         "ec2:Describe*"
       ]
     )