diff --git a/iam-sa.tf b/iam-sa.tf
index 9a37eab..fd09709 100644
--- a/iam-sa.tf
+++ b/iam-sa.tf
@@ -11,7 +11,8 @@ module "truefoundry_oidc_iam" {
   oidc_fully_qualified_subjects = [
     "system:serviceaccount:${var.svcfoundry_k8s_namespace}:${var.svcfoundry_k8s_service_account}",
     "system:serviceaccount:${var.mlfoundry_k8s_namespace}:${var.mlfoundry_k8s_service_account}",
-    "system:serviceaccount:${var.tfy_workflow_admin_k8s_namespace}:${var.tfy_workflow_admin_k8s_service_account}"
+    "system:serviceaccount:${var.tfy_workflow_admin_k8s_namespace}:${var.tfy_workflow_admin_k8s_service_account}",
+    "system:serviceaccount:${var.truefoundry_k8s_namespace}:${var.truefoundry_service_account}",
   ]
 
   role_description = "Truefoundry IAM role for ${var.svcfoundry_name}, ${var.mlfoundry_name} and ${var.tfy_workflow_admin_name} in cluster ${var.cluster_name}"
diff --git a/variables.tf b/variables.tf
index 6c064e4..05f4e1c 100644
--- a/variables.tf
+++ b/variables.tf
@@ -314,6 +314,24 @@ variable "tfy_workflow_admin_k8s_namespace" {
   type        = string
 }
 
+##################################################################################
+## Truefoundry service account
+##################################################################################
+
+variable "truefoundry_service_account" {
+  description = "Truefoundry k8s service name"
+  type        = string
+  default     = "truefoundry"
+}
+
+
+variable "truefoundry_k8s_namespace" {
+  description = "Truefoundry k8s namespace"
+  type        = string
+  default     = "truefoundry"
+}
+
+
 ##################################################################################
 ## IAM role
 ##################################################################################