diff --git a/lib/cloud/aws/policy_statements.go b/lib/cloud/aws/policy_statements.go
index 2e391b4fc1308..a1a0ef1b32a02 100644
--- a/lib/cloud/aws/policy_statements.go
+++ b/lib/cloud/aws/policy_statements.go
@@ -457,6 +457,7 @@ func StatementForAWSIdentityCenterAccess() *Statement {
 			"sso:DescribePermissionSet",
 			"sso:ListPermissionSets",
 			"sso:ListAccountAssignmentsForPrincipal",
+			"sso:ListPermissionSetsProvisionedToAccount",
 
 			// CreateAndDeleteAccountAssignment
 			"sso:CreateAccountAssignment",
diff --git a/lib/integrations/awsoidc/testdata/TestConfigureIdPIAMWithPolicyPresetOutput.golden b/lib/integrations/awsoidc/testdata/TestConfigureIdPIAMWithPolicyPresetOutput.golden
index 1090d1a7dc32f..fcec25c82811e 100644
--- a/lib/integrations/awsoidc/testdata/TestConfigureIdPIAMWithPolicyPresetOutput.golden
+++ b/lib/integrations/awsoidc/testdata/TestConfigureIdPIAMWithPolicyPresetOutput.golden
@@ -79,6 +79,7 @@ AssignPolicy: {
             "sso:DescribePermissionSet",
             "sso:ListPermissionSets",
             "sso:ListAccountAssignmentsForPrincipal",
+            "sso:ListPermissionSetsProvisionedToAccount",
             "sso:CreateAccountAssignment",
             "sso:DescribeAccountAssignmentCreationStatus",
             "sso:DeleteAccountAssignment",