Hello @Glenn Maxwell ,
Thank you so much for posting here.
According to our experience, if we would like to grant the user with the permission to create user and add users to the groups, we could configure the Delegate Control. For example:
1.Right click the OU, and then choose Delegate Control.
2.Add the user who will be granted the permissions.
3.Grant the permissions as shown below.
4.Then the user logs in and opens the ADUC. He has the permissions to newly create the users and add users to the groups which is in this OU.
Notes:
Please kindly note that the user could only have the permission to add the users to the groups in this OU. If he tried to add user to other group which is not in this OU, there is error as shown below.
Hope it helps. For any question, please feel free to contact us.
Best regards,
Hannah Xiong