LoFP LoFP / T1098.002

T1098.002

TitleTags
fullaccess mailbox delegation may be assigned for legitimate purposes, filter as needed.
mailbox folder permissions may be configured for legitimate purposes, filter as needed.
the full_access_as_app api permission may be assigned to legitimate applications. filter as needed.
while infrequent, the applicationimpersonation role may be granted for leigimate reasons, filter as needed.