I heard from a few people during the conference that they were having trouble importing LDAP group members and mapping to roles.
We have successfully imported groups and members. This allows us to assign roles to groups and manage all rights through Active Directory.

All we had to do was add a mapping in the User LDAP Mapping definition with the follow:
External name: member
Variable name: MEMBERS
Type: var
Table: sys_user

The external name for group members may vary if you are not using AD or ADAM. I haven't tested it, but I'm assuming this will not work with nested AD groups since the LDAP query will only resolve users with direct membership.

One more item that came up was troubleshooting LDAP server settings. The wiki references an LDAP browser that comes in handy when troubleshooting. Just browse to www.service-now.com/instance_name/ldapbrowse.do to verify connectivity to your LDAP server.