Login to the Active Directory domain as an administrative level user.

On a workstation or server, open Active Directory User and Computers (dsa.msc), and browse to the OU where you would like to create the group that will manage SecureLogin for the selected container and its children.

Click the create group button

Give the group a descriptive name, such as Service1-SecureLogin-Admins.

Add the appropriate users to the group.

Delegate the permissions to the SecureLogin attributes at the container where the users are.

The Delegate Control wizard opens.

Add the group you want to delegate control, then click Next.

Select create a custom task to delegate, then click Next.

Select This folder, existing objects in this folder, and creation of new objects in this folder, then click Next.

Since these are administrator level users they will be granted permissions to manage all aspects of the container and its subordinate objects. Select the General, Property-specific check boxes. Select the Read, Write, Read All Properties, and Write All Properties permissions.

Verify that you have all Protocom permissions with Read and Write. Click Next to continue.

You are now finished with the delegate control wizard for the Service1-SecureLogin-Admins group. Click Finish.