I ran into a couple issues while setting this up in 2019, maybe this helps someone in the future:
"Directory Service Server User Name" couldn't be domainname.com\service-account it had to be domainname\service-account. No .com allowed.
"Admin Group (Optional)" Can be nested in any OU/CN but is case sensitive.