The below outlines setting up a delegated user in Active directory to be able to perform password resets from within the Senso portal.
To setup the Senso side of things please Setting Password Reset Up Within Senso
Create a Standard Domain user in ADUC (this user can
be called anything you like or an existing domain
user\service account can be used if required)
Right Click the Domain or OU you want the delegate
to manage, please note the permissions may be
affected by inheritance.
Select Delegate Control, click next on the delegation
of control wizard.
Add the newly created Domain User & click next.
Click the Create custom task to delegate radio button
& then click next.
Select “only Allow the following objects in folder”
scroll to the bottom of the dialog box and select User
objects then click next.
Leave "general" Ticked and select "property specific"
Select the following objects from the list:
Click next & Finish – The Required delegate access is