Allowing users to reset passwords

In order to grant a user the ability to reset other user's passwords you need to both make sure they have the 'write' capability for the 'userpassword' attribute through an ACI as well as adding 'ds-privilege-name: password-reset'.

See https://www.opends.org/wiki/page/PrivilegeSubsystem

dn: cn=YOUR_USER_DN
changetype: modify
add: ds-privilege-name
ds-privilege-name: password-reset