Mappings: Totally optional; you could have an attribute on your AD user objects where you specify UID, for example - you'd know it if you needed it, I think.

Administrative: Your first guess. You can add users and groups to this field to automatically have them added to the admin group of a Mac when it is bound. Handy if you have an AD group for your techs.

Wonderful. Thank you for the info!

I forgot to mention I am a Windows System Engineer trying to find my way around JAMF.

Another question for you about the Administrative: Would I add the groups as domaingroup1 or just group1?

Shawn

Sorry for another post but I have another question:

For the "Prefer this domain server" field: If I leave this blank, will it just use any Domain Controller?

Thanks for your help!

Shawn

@sdonovan, If you leave DC field blank, it will try any DC.

You can add the groups without the domain prefix. That works for me.

One reason you might prefer specific domain servers is if you had regions (geographically) that you wanted to communicate with specific (regional) DCs. Then, you would have something like a "New York" AD binding and a "Seattle" AD binding, and so on.