diff --git a/src/main/java/com/medicare/neulpeum/config/SecurityConfig.java b/src/main/java/com/medicare/neulpeum/config/SecurityConfig.java
index 21c162c..6627cf3 100644
--- a/src/main/java/com/medicare/neulpeum/config/SecurityConfig.java
+++ b/src/main/java/com/medicare/neulpeum/config/SecurityConfig.java
@@ -36,6 +36,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                                 .requestMatchers("/api/login").permitAll()
                                 .requestMatchers("/api/admin/changePw", "/api/admin").hasRole("ADMIN")
                                 .requestMatchers("/api/drug", "/api/findDrug").hasRole("ADMIN")
+                                .requestMatchers("/accountSettings", "/drugs").hasRole("ADMIN")
                                 .anyRequest().authenticated()
                 )