Creating Organizational Units
LDAP breaks everything into very specific pieces, and we’re going to focus on two of those pieces: people and groups. Because we’re creating fairly generic Organizational Units (OUs), we’ll use the Generic Organizational Unit Template. To get there, log into phpLDAPadmin, click to expand your server listing (in my example it’s dc=monkeypantz,dc=net) and then click Create New Entry Here (Figure A).
Figure A
In the right pane (Figure B), select Generic: Organizational Unit.
Figure B
Let’s first create an OU named “groups”. In the next window type groups and click Create Object. Commit the group by clicking Commit in the next window (Figure C).
Figure C
You’ll see a new entry in the left pane called ou=groups (Figure D).
Figure D
Let’s create a new OU named “users”. Walk through the same process as above, though name the OU “users” instead of “groups”. You’ll see “ou=groups” and “ou=users” in the left pane.
Creating groups
Now that we have an OU created for groups, we can add the necessary groups. Let’s create groups for “admin”, “developers”, and “users”. Here’s how.
- Click the groups OU in the left pane.
- In the resulting window, click Create Child Entry (Figure E).
- Click Generic: Posix Group.
- Type admin into the group text area.
- Click Create Object.
- Click Commit.
- Repeat the process for “developers” and “users”.
Figure E
Creating users
Now that we have our groups created, we want to create users. To do this, follow these steps.
- Click ou=users from the left pane.
- In the resulting window, click Create A Child Entry.
- Select Generic: User Account.
- Fill out the required information- note that Common Name must be unique (Figure F).
- Click Create Object.
- Click Commit.
- Repeat this process until you have added your necessary users added.
Figure F
Adding users to groups
To add a user to a group, you must know the user’s UID (named User ID in the user creation window). To find a UID go to ou=users | View X child (where X is the number of users) and then locate the user to be added and make note of their associated UID. Once you have that UID, let’s add that user to the developers group. Here’s how.
- Expand ou=groups.
- Click the developers group.
- Click Add New Attribute.
- From the drop-down, select memberUID.
- Enter the UID for the user in the memberUID section (Figure G).
- Click Update Object.
Figure G
After you add the first user, adding subsequent users is much simpler. If you click the group name (under ou=groups in the left pane), you can click Modify Group Members (under memberUID) and then add the users from a list.
Source: How to populate an LDAP server with users and groups via phpLDAPadmin – TechRepublic