Specifying AD distinguished name (DN=)

We've been tasked with limiting access to the RHEL servers to a select group within AD. That group name is "unixadmin".

I'd like to survey the community to hear suggestions on how best to accomplish this. Question / Answers

History: I'm relatively new to RHEL. We're using samba and winbind.