diff --git a/manifests/exporters/kube-state-metrics-cluster-role-binding.yaml b/manifests/exporters/kube-state-metrics-cluster-role-binding.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..d7e421e626e470b42bfd4904e6693de3da106bb5
--- /dev/null
+++ b/manifests/exporters/kube-state-metrics-cluster-role-binding.yaml
@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1alpha1
+kind: ClusterRoleBinding
+metadata:
+  name: kube-state-metrics
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: kube-state-metrics
+subjects:
+- kind: ServiceAccount
+  name: kube-state-metrics
+  namespace: monitoring
diff --git a/manifests/exporters/kube-state-metrics-cluster-role.yaml b/manifests/exporters/kube-state-metrics-cluster-role.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..fdbd41db05b1fed7b8fb610a18078f30c910bfb5
--- /dev/null
+++ b/manifests/exporters/kube-state-metrics-cluster-role.yaml
@@ -0,0 +1,17 @@
+apiVersion: rbac.authorization.k8s.io/v1alpha1
+kind: ClusterRole
+metadata:
+  name: kube-state-metrics
+rules:
+- apiGroups: [""]
+  resources:
+  - nodes
+  - pods
+  - resourcequotas
+  verbs: ["list", "watch"]
+- apiGroups: ["extensions"]
+  resources:
+  - daemonsets
+  - deployments
+  - replicasets
+  verbs: ["list", "watch"]
diff --git a/manifests/exporters/kube-state-metrics-deployment.yaml b/manifests/exporters/kube-state-metrics-deployment.yaml
index 3fec8caded34fe0379b201ea35799e2fb82e3696..4a4e9ffdbd96d959636ef5ab8463bf582a07c108 100644
--- a/manifests/exporters/kube-state-metrics-deployment.yaml
+++ b/manifests/exporters/kube-state-metrics-deployment.yaml
@@ -9,6 +9,7 @@ spec:
       labels:
         app: kube-state-metrics
     spec:
+      serviceAccountName: kube-state-metrics
       containers:
       - name: kube-state-metrics
         image: gcr.io/google_containers/kube-state-metrics:v0.4.1
diff --git a/manifests/exporters/kube-state-metrics-service-account.yaml b/manifests/exporters/kube-state-metrics-service-account.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..997793528ad8b9970a4b5100cc644ea1ceafcb41
--- /dev/null
+++ b/manifests/exporters/kube-state-metrics-service-account.yaml
@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: kube-state-metrics