diff --git a/contrib/apparmor/template.go b/contrib/apparmor/template.go
index 5cf63717ab88c..e6d0b6d37c58c 100644
--- a/contrib/apparmor/template.go
+++ b/contrib/apparmor/template.go
@@ -31,6 +31,9 @@ profile /usr/bin/docker (attach_disconnected, complain) {
   @{DOCKER_GRAPH_PATH}/** rwl,
   @{DOCKER_GRAPH_PATH}/network/files/boltdb.db k,
   @{DOCKER_GRAPH_PATH}/network/files/local-kv.db k,
+  # For user namespaces:
+  @{DOCKER_GRAPH_PATH}/[0-9]*.[0-9]*/network/files/boltdb.db k,
+  @{DOCKER_GRAPH_PATH}/[0-9]*.[0-9]*/network/files/local-kv.db k,
 
   # For non-root client use:
   /dev/urandom r,