LDAP – Create OUs, Groups, and Users in OpenLDAP with LAM

In the previous tutorial, We successfully installed OpenLDAP Server and LAM on your system.

In this tutorial, We will learn How to Create OUs, Groups, and Users in the OpenLDAP server using LAM


  • OpenLDAP Server & LAM installed.

Read more



For this tutorial:

  • Domain: totatca.local
    • Default OU: Department
    • Default Group: Groups
  • Parent OU=Department contains:
    • Child OU called IT contains users below:
      • Users: it1, it2, …
    • Child OU called HR contains users below:
      • Users: hr1, hr2, …
  • Parent Group contains:
    • A group called grp-IT contains members of the IT department ( including it1, it2,…)
    • And a group called grp-HR contains members of the HR department (including hr1, hr2,…)

Step 1 – Create the OUs

First, log in to LAM with your username and password:

Login LAM

Hover mouse on the Tools button and choose the OU editor button:

 Access OU Editor

On the OU editor page, in the section New organisational unit choose the similar below:

  • Parent DN: Department > totatca > local
  • Name: IT

and then click OK to create a child OU as IT

Input OU infor

To create other organizational units, do the same as creating IT organizational unit

Now, hover mouse on the Tools button and click on the Tree view button to verify the OUs just create. You should see IT and HR OUs created in the Department OU.

Tree View

Step 2 – Create the Groups

Next, we will create groups for the respective departments. On the LAM page, click on the Groups tab and click on New group button:

Create new group

On the New group page, input the Name, ID, and Descriptions of the Group and click Save button

Input Group Info

To create other groups, do the same as creating IT group.

Show All Group

Step 3 – Create the Users

Lastly, we will create users for the respective department, click on the Users tab then click on the New user button:

Create new user

On the New user page, you have four sections for user management:

  • In the Suffix section: select the organization unit for the user. For example, I choose IT OU:
Select OU for User
  • In the Personal tab: Include the user’s personal information ( First name, Last name, Address, Contact,…) and fill out all of the relevant information in the Personal tab. The only information that is required is the Last name:
tab Personal
  • In the Unix tab: This section is where you set the Username, Common name, UID number(optional) , User comment, User Primary group, and Secondary groups, Home directory, and the default Login shell when the new user logs into a Linux workstation or server.
tab Unix
  • In the Shadow tab: You can add Shadow account extensions for user like Password warning, Password expiration, and Minimum password age,…
tab Shadow

When done with user info, click on the Set password button to set a password for the user

Set Password for User

Finally, click on the Save button to create a new user.

Click Save to create user

To create other groups, do the same as creating it1 user:

 Same for other users

To verify, hover again on the Tools button and select Tree View, you should see a result similar to below:

Recheck Tree View

That’s it.

Thank you for reading !!!

Leave a Reply

Your email address will not be published. Required fields are marked *