From f76766746f1cd44a2c3cfb0073bfbab5bf08c1db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jonas=20B=C3=BClow=20Knudsen?=
 <12843299+JonasBK@users.noreply.github.com>
Date: Tue, 6 Feb 2024 14:06:29 +0100
Subject: [PATCH] feat: GenericWrite on ADCS nodes

---
 src/CommonLib/Processors/ACLProcessor.cs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/CommonLib/Processors/ACLProcessor.cs b/src/CommonLib/Processors/ACLProcessor.cs
index 18e91138..3220b4e3 100644
--- a/src/CommonLib/Processors/ACLProcessor.cs
+++ b/src/CommonLib/Processors/ACLProcessor.cs
@@ -374,7 +374,7 @@ public IEnumerable<ACE> ProcessACL(byte[] ntSecurityDescriptor, string objectDom
                 if (aceRights.HasFlag(ActiveDirectoryRights.GenericWrite) ||
                     aceRights.HasFlag(ActiveDirectoryRights.WriteProperty))
                 {
-                    if (objectType is Label.User or Label.Group or Label.Computer or Label.GPO)
+                    if (objectType is Label.User or Label.Group or Label.Computer or Label.GPO or Label.CertTemplate or Label.RootCA or Label.EnterpriseCA or Label.AIACA or Label.NTAuthStore)
                         if (aceType is ACEGuids.AllGuid or "")
                             yield return new ACE
                             {
@@ -582,4 +582,4 @@ public IEnumerable<ACE> ProcessGMSAReaders(byte[] groupMSAMembership, string obj
             }
         }
     }
-}
\ No newline at end of file
+}