Windows Security Events

ID	Event Description
4672	Special privileges assigned to new logon Audit Success, CMMC L2, NIST800-171, NIST800-53
4673	A privileged service was called Audit Success, CMMC L2, NIST800-171, NIST800-53
4674	An operation was attempted on a privileged object Audit Failure, Audit Success, CMMC L2, NIST800-171, NIST800-53
4703	A token right was adjusted Audit Success, CMMC L2, NIST800-171, NIST800-53