I am currently running into an issue where any computer account or user account created in ADUC by a Domain Admin is unable to be edited by anyone with lower privileges than a Domain Admin. The affected users are members of the Account Operators group. We have also tried delegating permissions to an OU without success. Any ideas how I can remedy this situation?
Other pertinent info:
Functional Level: Server 2008 R2
Note: This also occurred prior to the functional level upgrade from 2000 mixed mode.