diff --git a/init.te b/init.te
index 9be5955dd992e41c4739d39587b1dfaa5f3ce7fc..6f2f47fabd54501ba344f7b36831229e06f03b96 100644
--- a/init.te
+++ b/init.te
@@ -1,6 +1,5 @@
 # init switches to init domain (via init.rc).
 type init, domain;
-permissive init;
 # init is unconfined.
 unconfined_domain(init)
 tmpfs_domain(init)
diff --git a/kernel.te b/kernel.te
index e313587b868472361b6470d46bb571fa7f957ce1..d1c1b7f823ba3ef645fbeaea412dfe516a7eb52b 100644
--- a/kernel.te
+++ b/kernel.te
@@ -1,6 +1,5 @@
 # Life begins with the kernel.
 type kernel, domain;
-permissive kernel;
 # The kernel is unconfined.
 unconfined_domain(kernel)
 relabelto_domain(kernel)