Binding Mac to Active Directory is preliminary required to get the Advanced Authentication Client working. To do it follow the steps:
Click Apple icon in left top corner, select System Preferences...
Click Network icon.
Click Advanced... button.
Switch to DNS tab.
In DNS Servers section double click an existing record to edit it. If it's not possible click + button.
Enter IP address of your DNS server. E.g. 192.168.0.200.
Click + button in Search Domains section.
Enter FQDN of your domain. E.g. company.com.
Click OK.
Click Apply in Network window.
Switch back to the System Preferences... menu.
Click Users & Groups icon.
Select Login Options item.
Click lock icon in bottom part of the window to unlock marking changes.
Enter local admin's Username and Password and click Unlock.
Click Join... next to the Network Account Server text.
In Server field enter the address of an Active Directory Domain. E.g. company.com.
Fill the AD Admin User and AD Admin Password fields.
Click OK.
In some seconds you will see a green icon near your domain name, next to the Network Account Server text.
Click Edit...
Click Open Directory Utility...
Click lock icon in bottom part of the Directory Utility window to unlock marking changes.
Enter local admin's Username and Password and click Modify Configuration.
Double check the Active Directory item.
Expand Show Advanced Options.
Switch to Administrative tab.
Check the Allow administration by option.
Click OK.
Click lock icon in bottom part of the Directory Utility window to prevent further changes.
Close the Directory Utility and Users & Groups windows.
To check the binding follow the steps:
Run Terminal.
Execute the command: login <UsernameOfActiveDirectoryUser>. E.g. login pjones.
Enter the user's password. The console should switch to the user.
Execute the command: exit. Close the Terminal.
Click Apple icon in left top corner, select Log Out <username>...
In user selection screen you will see the Other... icon.
Click it and try to log on as the domain user.