That error usually correlates to a bad username/password used. I’d try clearing out the AD account information under fog settings/Active Directory Defaults and re-entering. Make sure you enter the domain in the top box(AD DEFAULT DOMAINNAME) and not by the username in (AD DEFAULT USER).
Also make sure the password you enter in (AD DEFAULT PASSWORD) is not encrypted. The legacy password field is the one that requires encryption and is only for legacy clients.
After you make this change please update the AD settings under the individual host or host group(Click clear fields then uncheck/recheck the “Join Domain after deploy” box so it gets the new settings.