See forum post here:
http://forum.dokuwiki.org/thread/3397
I have group enumeration working with two changes. Perhaps only the first change needs to happen. Unfortunately since it is a different field being used to bind to the LDAP server, it will break existing AD auth for users who have a working config.