diff --git a/awx/main/access.py b/awx/main/access.py
index 1f9ee7aa66..32e600fbe9 100644
--- a/awx/main/access.py
+++ b/awx/main/access.py
@@ -558,7 +558,7 @@ class CredentialAccess(BaseAccess):
     def can_change(self, obj, data):
         if self.user.is_superuser:
             return True
-        return self.user in obj.admin_role
+        return self.user in obj.owner_role
 
     def can_delete(self, obj):
         # Unassociated credentials may be marked deleted by anyone, though we