The target node may be a Certificate Template or an Enterprise Certification Authority.
The Enroll permission grants enrollment rights on the certificate template.
The following additional requirements must be met for a principal to be able to enroll a certificate:
Certify can be used to enroll a certificate on Windows:
Certipy can be used to enroll a certificate on Linux:
When an attacker abuses a privilege escalation or impersonation primitive that relies on this relationship, it will necessarily result in the issuance of a certificate. A copy of the issued certificate will be saved on the host that issued the certificate.
This edge is related to the following MITRE ATT&CK tactic and techniques:
The target node may be a Certificate Template or an Enterprise Certification Authority.
The Enroll permission grants enrollment rights on the certificate template.
The following additional requirements must be met for a principal to be able to enroll a certificate:
Certify can be used to enroll a certificate on Windows:
Certipy can be used to enroll a certificate on Linux:
When an attacker abuses a privilege escalation or impersonation primitive that relies on this relationship, it will necessarily result in the issuance of a certificate. A copy of the issued certificate will be saved on the host that issued the certificate.
This edge is related to the following MITRE ATT&CK tactic and techniques: