Enabled User Right in AD to Control User Objects (311b6ce2-7890-4383-a8c2-663a9f6b43cd)
Detects scenario where if a user is assigned the SeEnableDelegationPrivilege right in Active Directory it would allow control of other AD user objects.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Account Manipulation - T1098 (a10641f4-87b4-45a3-a906-92a149cb2c27) | Attack Pattern | Enabled User Right in AD to Control User Objects (311b6ce2-7890-4383-a8c2-663a9f6b43cd) | Sigma-Rules | 1 |