diff --git a/refpolicy/config/local.users b/refpolicy/config/local.users
new file mode 100644
index 00000000..887f6f78
--- /dev/null
+++ b/refpolicy/config/local.users
@@ -0,0 +1,25 @@
+##################################
+#
+# User configuration.
+#
+# This file defines additional users recognized by the system security policy.
+# Only the user identities defined in this file and the system.users file
+# may be used as the user attribute in a security context.
+#
+# Each user has a set of roles that may be entered by processes
+# with the users identity.  The syntax of a user declaration is:
+#
+# 	user username roles role_set [ level default_level range allowed_range ];
+#
+# The MLS default level and allowed range should only be specified if 
+# MLS was enabled in the policy.
+
+user user_u roles { user_r };
+
+user root roles { sysadm_r staff_r };
+
+# sample for administrative user
+# user jadmin roles { staff_r sysadm_r };
+
+# sample for regular user
+#user jdoe roles { user_r };