diff --git a/src/main/java/de/thm/arsnova/config/SecurityConfig.java b/src/main/java/de/thm/arsnova/config/SecurityConfig.java
index da021fe18192b085ec2b79503d5a454fd27d6bbf..cda4bacf0b0421ed9e025cab4648681548dd604e 100644
--- a/src/main/java/de/thm/arsnova/config/SecurityConfig.java
+++ b/src/main/java/de/thm/arsnova/config/SecurityConfig.java
@@ -21,6 +21,7 @@ import org.springframework.core.io.ClassPathResource;
 import org.springframework.core.io.FileSystemResource;
 import org.springframework.core.io.Resource;
 import org.springframework.ldap.core.support.LdapContextSource;
+import org.springframework.security.access.PermissionEvaluator;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
 import org.springframework.security.cas.ServiceProperties;
@@ -58,6 +59,7 @@ import de.thm.arsnova.CASLogoutSuccessHandler;
 import de.thm.arsnova.CasUserDetailsService;
 import de.thm.arsnova.LoginAuthenticationFailureHandler;
 import de.thm.arsnova.LoginAuthenticationSucessHandler;
+import de.thm.arsnova.security.ApplicationPermissionEvaluator;
 import de.thm.arsnova.security.DbUserDetailsService;
 
 @Configuration
@@ -166,6 +168,11 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter implements Serv
 		return new SessionRegistryImpl();
 	}
 
+	@Bean
+	public PermissionEvaluator permissionEvaluator() {
+		return new ApplicationPermissionEvaluator();
+	}
+
 	@Bean
 	public static AuthenticationEntryPoint restAuthenticationEntryPoint() {
 		return new Http403ForbiddenEntryPoint();