# Creating Users and Groups in OpenLDAP using phpldapadmin

Credit: [Srinivasan Ganesan](https://adminstuffs.blogspot.com/2017/01/creating-users-and-groups-in-openldap.html)

## Creating Users and Groups in OpenLDAP using phpldapadmin
**Creating Organization Unit**
**Follow the below Procedures for creating OU named Users and Groups**
**(i)** Open the LDAP Web Console using the URL **<hostname>/phpldapadmin** and Click on the Distinguished Name **(e.g dc=openldap,dc=com)** and click **Create a child Entry**
[![image-1624707265796.png](https://docs.deeztek.com/uploads/images/gallery/2021-06/scaled-1680-/image-1624707265796.png)](https://docs.deeztek.com/uploads/images/gallery/2021-06/image-1624707265796.png)
**(ii)** Click on **Generic: Organizational Unit**
[![image-1624707273449.png](https://docs.deeztek.com/uploads/images/gallery/2021-06/scaled-1680-/image-1624707273449.png)](https://docs.deeztek.com/uploads/images/gallery/2021-06/image-1624707273449.png)
**(iii)** Provide a Name **(e.g Groups)** and click on **Create Object**
[![image-1624707303548.png](https://docs.deeztek.com/uploads/images/gallery/2021-06/scaled-1680-/image-1624707303548.png)](https://docs.deeztek.com/uploads/images/gallery/2021-06/image-1624707303548.png)
**(iv)** Now, click on **Commit**
[![](https://2.bp.blogspot.com/-pP9vjb7SpAA/WG3ZbLJfwWI/AAAAAAAAB5M/TS0zhwQhndkal_m7HlapoohS10jyypx2ACEw/s320/sel3.png)](https://2.bp.blogspot.com/-pP9vjb7SpAA/WG3ZbLJfwWI/AAAAAAAAB5M/TS0zhwQhndkal_m7HlapoohS10jyypx2ACEw/s1600/sel3.png)
The **OU** (Organizational Unit) named **Groups** is now created.
[![](https://3.bp.blogspot.com/-Hmvoqf-UZNI/WG3ZbY86XbI/AAAAAAAAB5Q/FNOfzTqiDcQafhJk07XKdSVffNS73Li-gCEw/s320/sel4.png)](https://3.bp.blogspot.com/-Hmvoqf-UZNI/WG3ZbY86XbI/AAAAAAAAB5Q/FNOfzTqiDcQafhJk07XKdSVffNS73Li-gCEw/s1600/sel4.png)
**(v)** Follow the same above procedures for creating **OU** named **Users.**
[![](https://4.bp.blogspot.com/-msoc0atUKOw/WG3ZbzQMvPI/AAAAAAAAB5Y/guQL9jfe3LEFWHjT2kim1oTf40PFlryigCEw/s320/sel5.png)](https://4.bp.blogspot.com/-msoc0atUKOw/WG3ZbzQMvPI/AAAAAAAAB5Y/guQL9jfe3LEFWHjT2kim1oTf40PFlryigCEw/s1600/sel5.png)
**Now we have two OUs Users and Groups**
**Creating Users and Groups**
[](https://www.blogger.com/null)1. Creating Users
**(i)** Select the **OU Users** and click on **Create a child entry**
[![](https://2.bp.blogspot.com/-7tuZTmGoJNA/WG3Zb7cWPfI/AAAAAAAAB5c/5aGgKvVUN5AjXCbdIeZLZj3HIE-bIsOjACEw/s320/sel6.png)](https://2.bp.blogspot.com/-7tuZTmGoJNA/WG3Zb7cWPfI/AAAAAAAAB5c/5aGgKvVUN5AjXCbdIeZLZj3HIE-bIsOjACEw/s1600/sel6.png)
**(ii)** From the **Create Object page** which appears, click on **Default**
[![](https://3.bp.blogspot.com/-iqKDQjhsPP8/WG3ZcPlSmxI/AAAAAAAAB5g/mn70iKuXrFsdNefUDAM3ieGNR0GANe8BQCEw/s320/sel7.png)](https://3.bp.blogspot.com/-iqKDQjhsPP8/WG3ZcPlSmxI/AAAAAAAAB5g/mn70iKuXrFsdNefUDAM3ieGNR0GANe8BQCEw/s1600/sel7.png)
**(iii)** Select **inetOrgPerson** from the **ObjectClasses** and click on **Proceed >>**
[![](https://3.bp.blogspot.com/-0oYrvHe_rZM/WG3Ws7N4ACI/AAAAAAAAB14/6_KfpzPAMe0CbY7plco3OZdT-XmaB3NRgCK4B/s320/image-794818.png)](https://3.bp.blogspot.com/-0oYrvHe_rZM/WG3Ws7N4ACI/AAAAAAAAB14/6_KfpzPAMe0CbY7plco3OZdT-XmaB3NRgCK4B/s1600/image-794818.png)
**(iv)** Select **RDN** as **cn (cn).** Provide **cn** name, **sn** name, **displayName**, **Password**, **User Name** and any other required fields and click on **Create Object**
[![](https://1.bp.blogspot.com/-gyG76oFledo/WG3WtKcxDOI/AAAAAAAAB2A/lEuFusLN4pcEi3-Rytkb0pJWFvhxuVkhACK4B/s320/image-795988.png)](https://1.bp.blogspot.com/-gyG76oFledo/WG3WtKcxDOI/AAAAAAAAB2A/lEuFusLN4pcEi3-Rytkb0pJWFvhxuVkhACK4B/s1600/image-795988.png)
[![](https://3.bp.blogspot.com/-mslSOeVPe24/WG3WtRMaSlI/AAAAAAAAB2I/rPnI7H0TKU8ITek9cVwprSxmwbFtFaSxACK4B/s320/image-797089.png)](https://3.bp.blogspot.com/-mslSOeVPe24/WG3WtRMaSlI/AAAAAAAAB2I/rPnI7H0TKU8ITek9cVwprSxmwbFtFaSxACK4B/s1600/image-797089.png)
[![](https://4.bp.blogspot.com/-rwNsh2rKDjQ/WG3WtqtmFhI/AAAAAAAAB2Q/n4NgQObWhh8VGwhy85Dkq5t2t4M6Yt5UgCK4B/s320/image-798363.png)](https://4.bp.blogspot.com/-rwNsh2rKDjQ/WG3WtqtmFhI/AAAAAAAAB2Q/n4NgQObWhh8VGwhy85Dkq5t2t4M6Yt5UgCK4B/s1600/image-798363.png)
[![](https://3.bp.blogspot.com/-lG1DU5JQUAQ/WG3Wtxgot9I/AAAAAAAAB2Y/7ZZGtGjCa7Yj3gcFEdLjxv5GY4TNTS-2QCK4B/s320/image-799430.png)](https://3.bp.blogspot.com/-lG1DU5JQUAQ/WG3Wtxgot9I/AAAAAAAAB2Y/7ZZGtGjCa7Yj3gcFEdLjxv5GY4TNTS-2QCK4B/s1600/image-799430.png)
[![](https://1.bp.blogspot.com/-LuulAa9eU_8/WG3WuV-ILcI/AAAAAAAAB2g/5-YAVno2tmUi43G7Ikz7vbkxHD4aniXOwCK4B/s320/image-700579.png)](https://1.bp.blogspot.com/-LuulAa9eU_8/WG3WuV-ILcI/AAAAAAAAB2g/5-YAVno2tmUi43G7Ikz7vbkxHD4aniXOwCK4B/s1600/image-700579.png)
**(v)** Now, click on **Commit**
[![](https://4.bp.blogspot.com/-FO9grm3MreM/WG3ZcV6ZzYI/AAAAAAAAB5o/ugwGPFPE6pIVLeidKNB0vQwdOZKSVA_cwCEw/s320/sel8.png)](https://4.bp.blogspot.com/-FO9grm3MreM/WG3ZcV6ZzYI/AAAAAAAAB5o/ugwGPFPE6pIVLeidKNB0vQwdOZKSVA_cwCEw/s1600/sel8.png)
Now, a user named **ldapuser** is created under the **OU 'Users'**
[![](https://4.bp.blogspot.com/-6nNizs8xicc/WG3Wuz1tr5I/AAAAAAAAB2w/4FY-f0r97Do9eELX2oXrAVFGneXDMhQ8QCK4B/s320/image-702906.png)](https://4.bp.blogspot.com/-6nNizs8xicc/WG3Wuz1tr5I/AAAAAAAAB2w/4FY-f0r97Do9eELX2oXrAVFGneXDMhQ8QCK4B/s1600/image-702906.png)
[](https://www.blogger.com/null)2. Creating Groups
**(i)** Click on **OU Groups** and click on **Create a child entry**
[![](https://4.bp.blogspot.com/-9Vvo4nCj7FI/WG3WvDp86GI/AAAAAAAAB24/rQQm5oc5XwcK-wJvIB9RbVGtqu7wVJbkACK4B/s320/image-704204.png)](https://4.bp.blogspot.com/-9Vvo4nCj7FI/WG3WvDp86GI/AAAAAAAAB24/rQQm5oc5XwcK-wJvIB9RbVGtqu7wVJbkACK4B/s1600/image-704204.png)
**(ii)** Now, click on **Default**
**[![](https://2.bp.blogspot.com/-Q_vzjqjVk2g/WG3WvlKoIUI/AAAAAAAAB3A/Xx5xEN_DBEcRNAbq0wK0lHDtdzk3qRshQCK4B/s320/image-705538.png)](https://2.bp.blogspot.com/-Q_vzjqjVk2g/WG3WvlKoIUI/AAAAAAAAB3A/Xx5xEN_DBEcRNAbq0wK0lHDtdzk3qRshQCK4B/s1600/image-705538.png)**
**(iii)** Now Select **groupOfNames** from **ObjectClasses** and Click **Proceed >>**
[![](https://1.bp.blogspot.com/-t84FdJHvXlo/WG3Wvw9S5SI/AAAAAAAAB3I/dwdXOb6_IOo7HO4Rni-ES4HtMPCHQpRbACK4B/s320/image-706765.png)](https://1.bp.blogspot.com/-t84FdJHvXlo/WG3Wvw9S5SI/AAAAAAAAB3I/dwdXOb6_IOo7HO4Rni-ES4HtMPCHQpRbACK4B/s1600/image-706765.png)
**(iv)** Select **cn (cn)** as RDN. Provide a **cn** name, **member** (any one users, we can modify it later) and click on **Create Object**
[![](https://3.bp.blogspot.com/-HF20mCYUzds/WG3WwNArdmI/AAAAAAAAB3Q/Tgs3XlF9U7ASMMFjVmIAmfq1TY_Lz-SJACK4B/s320/image-707942.png)](https://3.bp.blogspot.com/-HF20mCYUzds/WG3WwNArdmI/AAAAAAAAB3Q/Tgs3XlF9U7ASMMFjVmIAmfq1TY_Lz-SJACK4B/s1600/image-707942.png)
**(v)** Now, click on **Commit**
[![](https://1.bp.blogspot.com/-gxZElp4EyKM/WG3Wwb6oEPI/AAAAAAAAB3Y/LJnmEM5W83QnfwJ1gA8D34I3Ju65V-pSACK4B/s320/image-709233.png)](https://1.bp.blogspot.com/-gxZElp4EyKM/WG3Wwb6oEPI/AAAAAAAAB3Y/LJnmEM5W83QnfwJ1gA8D34I3Ju65V-pSACK4B/s1600/image-709233.png)
Group named **ldapgroup** is now created under **OU Groups**
[![](https://3.bp.blogspot.com/-s9RCtI6SqeA/WG3Wwv_9IAI/AAAAAAAAB3g/7oe2BUb3bT04IucdFRi_WB_aV6SCx0u9wCK4B/s320/image-710457.png)](https://3.bp.blogspot.com/-s9RCtI6SqeA/WG3Wwv_9IAI/AAAAAAAAB3g/7oe2BUb3bT04IucdFRi_WB_aV6SCx0u9wCK4B/s1600/image-710457.png)
3. Creating Groups with Special Characters(e.g ">>")
**(i)** Select **OU Groups** and click on **Create a child entry.**
[![](https://2.bp.blogspot.com/-6fk3vOb9a8o/WG3WxKqyLAI/AAAAAAAAB3o/3Xsyz_Y3tA0HDFf7bawscEivPa2p0EY-gCK4B/s320/image-711698.png)](https://2.bp.blogspot.com/-6fk3vOb9a8o/WG3WxKqyLAI/AAAAAAAAB3o/3Xsyz_Y3tA0HDFf7bawscEivPa2p0EY-gCK4B/s1600/image-711698.png)
[](https://www.blogger.com/null)
**(ii)** Now, Click on **Default.**
[![](https://2.bp.blogspot.com/-im513GbdYW8/WG3WxTAF9FI/AAAAAAAAB3w/YDSbUp1rq640YjpbCpKBJ1ReY3wPNgauQCK4B/s320/image-712860.png)](https://2.bp.blogspot.com/-im513GbdYW8/WG3WxTAF9FI/AAAAAAAAB3w/YDSbUp1rq640YjpbCpKBJ1ReY3wPNgauQCK4B/s1600/image-712860.png)
**(iii)** Select **groupOfNames** from **ObjectClasses** and click on **Proceed >>**
[![](https://3.bp.blogspot.com/-RDUFIGRyMew/WG3WxmBVNLI/AAAAAAAAB34/VCccnOcCFoAk75RMg8goY9zVTg6o2uVDgCK4B/s320/image-714079.png)](https://3.bp.blogspot.com/-RDUFIGRyMew/WG3WxmBVNLI/AAAAAAAAB34/VCccnOcCFoAk75RMg8goY9zVTg6o2uVDgCK4B/s1600/image-714079.png)
**(iv)** Now **cn (cn)** as RDN and Provide the **cn** name. Escape ant Special Characters using
***backslash (\\)*** **symbol.**
[![](https://1.bp.blogspot.com/-jLRHtFCMI6k/WG3Wx0XGsVI/AAAAAAAAB4A/YudOrd0ndQMDssEMH-aDL06k-fr8lWYxACK4B/s320/image-715287.png)](https://1.bp.blogspot.com/-jLRHtFCMI6k/WG3Wx0XGsVI/AAAAAAAAB4A/YudOrd0ndQMDssEMH-aDL06k-fr8lWYxACK4B/s1600/image-715287.png)
**(v)** Now provide a valid user in **member** attribute and click on **Create Object** and proceed with **Commit.**
[![](https://3.bp.blogspot.com/--GvHnTBIPSs/WG3WyAFf-aI/AAAAAAAAB4I/-8ivZa-mAwQA8IyAeaoJ8t0fQhQ4PidGQCK4B/s320/image-716489.png)](https://3.bp.blogspot.com/--GvHnTBIPSs/WG3WyAFf-aI/AAAAAAAAB4I/-8ivZa-mAwQA8IyAeaoJ8t0fQhQ4PidGQCK4B/s1600/image-716489.png)
**(vi)** Now, group named **OpenldapGroups** is created under **Groups OU** with **cn** name **Openldap\\>\\>Groups.** The group will have another value in **cn** with the ***backslash (\\)** removed.*
[![](https://4.bp.blogspot.com/-Rj-u-To1-8M/WG3Wyot2IWI/AAAAAAAAB4Q/xHUYLUkaz4gidJJakgp6SrT2zXUdfNqcwCK4B/s320/image-717680.png)](https://4.bp.blogspot.com/-Rj-u-To1-8M/WG3Wyot2IWI/AAAAAAAAB4Q/xHUYLUkaz4gidJJakgp6SrT2zXUdfNqcwCK4B/s1600/image-717680.png)
***(vii)** Now, **Delete** the entry **Openldap\\>\\>Groups** and click on **Update Object** and proceed with **Update Object.***
[![](https://2.bp.blogspot.com/-0sS6LG3850g/WG3WyxBX1uI/AAAAAAAAB4Y/dVt2XC33LCMOpsMgv9UFDWoxETuSF2McACK4B/s320/image-718921.png)](https://2.bp.blogspot.com/-0sS6LG3850g/WG3WyxBX1uI/AAAAAAAAB4Y/dVt2XC33LCMOpsMgv9UFDWoxETuSF2McACK4B/s1600/image-718921.png)
[![](https://2.bp.blogspot.com/-GFjptf8ywpU/WG3WzEoyYdI/AAAAAAAAB4g/qQUWcCmPmOINRhaH8AJtyDzSuIDRLb0ZwCK4B/s320/image-720191.png)](https://2.bp.blogspot.com/-GFjptf8ywpU/WG3WzEoyYdI/AAAAAAAAB4g/qQUWcCmPmOINRhaH8AJtyDzSuIDRLb0ZwCK4B/s1600/image-720191.png)
***(viii)** Now the **Openldap\\>\\>Groups** cn name is removed from **OpenldapGroups** and it is updated with **cn** name **Openldap>>Groups***
[![](https://3.bp.blogspot.com/-tYZoFfFtkWE/WG3WzhGV38I/AAAAAAAAB4o/ZgFZYjts3eEBxCyrj1TxPd8zhvRH02jhQCK4B/s320/image-721481.png)](https://3.bp.blogspot.com/-tYZoFfFtkWE/WG3WzhGV38I/AAAAAAAAB4o/ZgFZYjts3eEBxCyrj1TxPd8zhvRH02jhQCK4B/s1600/image-721481.png)
[](https://www.blogger.com/null)4. Modifying members in a group
**(i)** Click on **modify group members** from **member** attribute
[![](https://3.bp.blogspot.com/-XD6_un_e-lg/WG3Wz0XwyLI/AAAAAAAAB4w/CyY7GDL2F4o147P8J9WkJPnSbBGsGPgVgCK4B/s320/image-722789.png)](https://3.bp.blogspot.com/-XD6_un_e-lg/WG3Wz0XwyLI/AAAAAAAAB4w/CyY7GDL2F4o147P8J9WkJPnSbBGsGPgVgCK4B/s1600/image-722789.png)
**(ii)** From the **Modify group** page we **Add or Remove Users** based on our needs and click on **Save changes**
[![](https://1.bp.blogspot.com/-sMfOCjPk-c0/WG3W0P1dF-I/AAAAAAAAB44/7KI0VR8M7n8UM6nJD5WnjLr93m2n0S-0gCK4B/s320/image-723963.png)](https://1.bp.blogspot.com/-sMfOCjPk-c0/WG3W0P1dF-I/AAAAAAAAB44/7KI0VR8M7n8UM6nJD5WnjLr93m2n0S-0gCK4B/s1600/image-723963.png)
**(iii)** Now, click on **Update Object** to save the changes
[![](https://4.bp.blogspot.com/-Zw9MSCUdRVs/WG3W0UkHyoI/AAAAAAAAB5A/HxmT1U0icAgWRS8OJWqGC7Q50Oechd-DgCK4B/s320/image-725207.png)](https://4.bp.blogspot.com/-Zw9MSCUdRVs/WG3W0UkHyoI/AAAAAAAAB5A/HxmT1U0icAgWRS8OJWqGC7Q50Oechd-DgCK4B/s1600/image-725207.png)