core-admin/linux/system-config/dbus-org.qubesos.PolicyAgent.conf

<?xml version="1.0" encoding="UTF-8"?> <!-- -*- XML -*- -->

<!DOCTYPE busconfig PUBLIC
 "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
 "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
<busconfig>
  <!-- User need to be in qubes group to own the service -->
  <policy group="qubes">
    <allow own="org.qubesos.PolicyAgent"/>
  </policy>
  <policy context="default">

    <allow send_destination="org.qubesos.PolicyAgent"
           send_interface="org.freedesktop.DBus.Introspectable"/>

    <allow send_destination="org.qubesos.PolicyAgent"
           send_interface="org.qubesos.PolicyAgent"/>
  </policy>
</busconfig>