diff --git a/auth_backend_ldap.tf b/auth_backend_ldap.tf
index fb34a87..41c0ece 100644
--- a/auth_backend_ldap.tf
+++ b/auth_backend_ldap.tf
@@ -29,3 +29,12 @@ resource "vault_ldap_auth_backend_group" "vault_access" {
   ]
   backend = vault_ldap_auth_backend.ldap.path
 }
+
+resource "vault_ldap_auth_backend_group" "vault_admin" {
+  groupname = "vault_access"
+  policies = [
+    "default_access",
+    "global-admin",
+  ]
+  backend = vault_ldap_auth_backend.ldap.path
+}