I have created user group in AD, then I delegated the group to unlock user accounts.
As a test I put one user in domain admins group and type worn password several times to lock him out. I used another user which is member if the group I delegated in order to unlock the account, but it shows greyed out.
followed steps 1 to 9
but I could not get a domain user to unlock account of a Domain Admins user
Apparently even with delegation domain user will not be able to unlock domain admins account.
Any work around this.?