Look in the files located here: C:\Program Files (x86)\BigFix Enterprise\BES Client\__BESData\__Global\ADCache
BigFix can only really report from AD what is in it’s cache.
You should be able to report on the OUs of users and computers. You might be able to report on AD groups, but I don’t remember.
You might be able to run a script that could query AD and tag the machine with the info you need BUT you have to be extremely careful with doing anything that queries something over the network from all of your clients because it can all happen at the same time and you can DDoS yourself. There are ways to try to mitigate this, but caution is still warranted.