Within our AD sctructure, I've discovered that a security group named "company employees" has been protected. Get-ADGroup -LDAPFilter "(objectcategory=group)(admincount=1)" proved this to be true.
This is preventing our help desk from changing passwords. I understand this isn't desired by any means. I'm just trying to fix it. How can I un-protect this group?