diff --git a/apparmor.d/groups/systemd/systemd-generator-bless-boot b/apparmor.d/groups/systemd/systemd-generator-bless-boot
new file mode 100644
index 00000000..0092bf08
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-bless-boot
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-bless-boot-generator
+profile systemd-generator-bless-boot @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-bless-boot>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-cloud-init b/apparmor.d/groups/systemd/systemd-generator-cloud-init
new file mode 100644
index 00000000..b97bc19c
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-cloud-init
@@ -0,0 +1,27 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/cloud-init-generator
+profile systemd-generator-cloud-init @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/consoles>
+  include <abstractions/nameservice-strict>
+
+  @{exec_path} mr,
+
+  @{bin}/{,ba,da}sh              rix,
+  @{bin}/systemd-detect-virt     rPx,
+  @{lib}/cloud-init/ds-identify rPUx,
+
+  @{run}/cloud-init/cloud-init-generator.log rw,
+  @{run}/cloud-init/disabled w,
+
+  @{PROC}/cmdline r,
+
+  include if exists <local/systemd-generator-cloud-init>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-cryptsetup b/apparmor.d/groups/systemd/systemd-generator-cryptsetup
new file mode 100644
index 00000000..3cd68e6e
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-cryptsetup
@@ -0,0 +1,20 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-cryptsetup-generator
+profile systemd-generator-cryptsetup @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/consoles>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  /etc/crypttab r,
+
+  include if exists <local/systemd-generator-cryptsetup>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-debug b/apparmor.d/groups/systemd/systemd-generator-debug
new file mode 100644
index 00000000..deffb5fe
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-debug
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-debug-generator
+profile systemd-generator-debug @{exec_path} flags=(attach_disconnected)  {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-debug>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-ds-identify b/apparmor.d/groups/systemd/systemd-generator-ds-identify
new file mode 100644
index 00000000..f9969c8c
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-ds-identify
@@ -0,0 +1,23 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/cloud-init/ds-identify
+profile systemd-generator-ds-identify @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/consoles>
+  include <abstractions/nameservice-strict>
+
+  @{exec_path} mr,
+
+  @{bin}/{,ba,da}sh r,
+
+  @{run}/cloud-init/.ds-identify.result r,
+
+  include if exists <local/systemd-generator-ds-identify>
+}
+
diff --git a/apparmor.d/groups/systemd/systemd-generator-environment-arch b/apparmor.d/groups/systemd/systemd-generator-environment-arch
new file mode 100644
index 00000000..66d1c1e4
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-environment-arch
@@ -0,0 +1,20 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-environment-generators/10-arch
+profile systemd-generator-environment-arch @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/consoles>
+  include <abstractions/nameservice-strict>
+
+  @{exec_path} mr,
+
+  @{bin}/{,ba,da}sh r,
+
+  include if exists <local/systemd-generator-environment-arch>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-environment-flatpak b/apparmor.d/groups/systemd/systemd-generator-environment-flatpak
new file mode 100644
index 00000000..cd056d24
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-environment-flatpak
@@ -0,0 +1,18 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-environment-generators/60-flatpak-system-only
+profile systemd-generator-environment-flatpak @{exec_path} {
+  include <abstractions/base>
+
+  @{exec_path} mr,
+
+  @{bin}/flatpak rix,
+
+  include if exists <local/systemd-generator-environment-flatpak>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-hibernate-resume b/apparmor.d/groups/systemd/systemd-generator-hibernate-resume
new file mode 100644
index 00000000..5a333252
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-hibernate-resume
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-hibernate-resume-generator
+profile systemd-generator-hibernate-resume @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-hibernate-resume>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-integritysetup b/apparmor.d/groups/systemd/systemd-generator-integritysetup
new file mode 100644
index 00000000..5b582ceb
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-integritysetup
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-integritysetup-generator
+profile systemd-generator-integritysetup @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-integritysetup>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-ostree b/apparmor.d/groups/systemd/systemd-generator-ostree
new file mode 100644
index 00000000..8cf48056
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-ostree
@@ -0,0 +1,16 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/ostree-system-generator 
+profile systemd-generator-ostree @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+
+  @{exec_path} mr,
+
+  include if exists <local/systemd-generator-ostree>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-run b/apparmor.d/groups/systemd/systemd-generator-run
new file mode 100644
index 00000000..9800810a
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-run
@@ -0,0 +1,25 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-run-generator
+profile systemd-generator-run @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  ptrace (read) peer=@{systemd},
+
+  @{exec_path} mr,
+
+  /etc/fstab r,
+
+  @{sys}/**/uevent r,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-run>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-system-update b/apparmor.d/groups/systemd/systemd-generator-system-update
new file mode 100644
index 00000000..cb10f44c
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-system-update
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-system-update-generator
+profile systemd-generator-system-update @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-system-update>
+}
\ No newline at end of file
diff --git a/apparmor.d/groups/systemd/systemd-generator-veritysetup b/apparmor.d/groups/systemd/systemd-generator-veritysetup
new file mode 100644
index 00000000..1448beb3
--- /dev/null
+++ b/apparmor.d/groups/systemd/systemd-generator-veritysetup
@@ -0,0 +1,21 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2023 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/systemd/system-generators/systemd-veritysetup-generator
+profile systemd-generator-veritysetup @{exec_path} flags=(attach_disconnected) {
+  include <abstractions/base>
+  include <abstractions/systemd-common>
+
+  ptrace (read) peer=@{systemd},
+
+  @{exec_path} mr,
+
+  @{PROC}/@{pid}/cgroup r,
+
+  include if exists <local/systemd-generator-veritysetup>
+}
\ No newline at end of file