diff --git a/templates/common/_base/units/kubelet-selinux-bools.yaml b/templates/common/_base/units/kubelet-selinux-bools.yaml
new file mode 100644
index 0000000000..039978675d
--- /dev/null
+++ b/templates/common/_base/units/kubelet-selinux-bools.yaml
@@ -0,0 +1,14 @@
+name: kubelet-selinux-bools.service
+enabled: true
+contents: |
+  [Unit]
+  Description=Adjust selinux bools for kubelet.
+  Before=kubelet-dependencies.target
+  [Service]
+  Type=oneshot
+  RemainAfterExit=yes
+  User=root
+  ExecStart=-/usr/sbin/setsebool selinuxuser_execstack off
+  TimeoutSec=20
+  [Install]
+  RequiredBy=kubelet-dependencies.target
\ No newline at end of file