Resetting a user's password and set the requirements for the user to change their password at the next logon are two different operations.
Using the ADUC delegation wizard to assign password reset permissions
to the grp1 group it will assign the following permissions to the select OU:
The first permission provides the ability to reset the user's password, the second permissions provides the ability to force the user to reset their password at the next logon.
You can confirm if the user is required to change their password at next logon by looking at the pwdlastset attribute, if the pwdlastset attribute is set to 0 (zero), the user must change their password at next logon.
You can change the user's password without set the pwdlastset to zero by wirting the new password to the unicodepwd attribute.
Gary.