works, lets create a test OU to play with:
$ emacs /tmp/test.ldif
- $ cat /tmp/test.ldif
- version: 1
+ $ cat /tmp/test.ldif
+ version: 1
dn: ou=test, dc=example,dc=com
objectClass: organizationalUnit
ou: testing
Now assign one of your people to that group:
- $ emacs /tmp/alias.ldif
+ $ emacs /tmp/alias.ldif
$ cat /tmp/alias.ldif
- version: 1
- dn: cn=Jane Doe, ou=test,dc=example,dc=com
- objectClass: alias
- aliasedObjectName: cn=Jane Doe, ou=people,dc=example,dc=com
+ version: 1
+ dn: cn=Jane Doe, ou=test,dc=example,dc=com
+ objectClass: alias
+ aliasedObjectName: cn=Jane Doe, ou=people,dc=example,dc=com
$ ldapadd -D "cn=Manager,dc=example,dc=com" -xW -f /tmp/alias.ldif
$ rm /tmp/alias.ldif
you get:
$ ldapadd -D "cn=Manager,dc=example,dc=com" -xW -f /tmp/alias.ldif
- Enter LDAP Password:
- adding new entry "cn=Jane Doe, ou=test,dc=example,dc=com"
+ Enter LDAP Password:
+ adding new entry "cn=Jane Doe, ou=test,dc=example,dc=com"
ldap_add: Object class violation (65)
additional info: attribute 'cn' not allowed