diff --git a/lms/djangoapps/instructor/permissions.py b/lms/djangoapps/instructor/permissions.py
new file mode 100644
index 0000000000..85d2153f01
--- /dev/null
+++ b/lms/djangoapps/instructor/permissions.py
@@ -0,0 +1,12 @@
+"""
+Permissions for the instructor dashboard and associated actions
+"""
+
+from bridgekeeper import perms
+from courseware.rules import HasAccessRule
+
+
+VIEW_ISSUED_CERTIFICATES = 'instructor.view_issued_certificates'
+
+
+perms[VIEW_ISSUED_CERTIFICATES] = HasAccessRule('staff')
diff --git a/lms/djangoapps/instructor/views/api.py b/lms/djangoapps/instructor/views/api.py
index 71cfa36dd8..216e4d320e 100644
--- a/lms/djangoapps/instructor/views/api.py
+++ b/lms/djangoapps/instructor/views/api.py
@@ -148,6 +148,8 @@ from .tools import (
     strip_if_string
 )
 
+from ..permissions import VIEW_ISSUED_CERTIFICATES
+
 log = logging.getLogger(__name__)
 
 TASK_SUBMISSION_OK = 'created'
@@ -1232,7 +1234,7 @@ def re_validate_invoice(obj_invoice):
 @transaction.non_atomic_requests
 @ensure_csrf_cookie
 @cache_control(no_cache=True, no_store=True, must_revalidate=True)
-@require_level('staff')
+@require_course_permission(VIEW_ISSUED_CERTIFICATES)
 def get_issued_certificates(request, course_id):
     """
     Responds with JSON if CSV is not required. contains a list of issued certificates.