diff --git a/ansible/roles/keystone/templates/keystone.json.j2 b/ansible/roles/keystone/templates/keystone.json.j2
index acd507ff8adc5c72303ef7243874b9922b02c791..35bd7bc51d6f8ee147d177765d0a88044020db43 100644
--- a/ansible/roles/keystone/templates/keystone.json.j2
+++ b/ansible/roles/keystone/templates/keystone.json.j2
@@ -13,7 +13,7 @@
             "source": "{{ container_config_directory }}/domains",
             "dest": "/etc/keystone/domains",
             "owner": "keystone",
-            "perm": "0600",
+            "perm": "0700",
             "optional": true
         },
         {