All of the examples and documentation I've been perusing always uses ou=groups. Due to a desire for greater flexibility (such as renaming groups), I would like to make groups (an all other top levels of the DIT) as domain-components instead.
My current base is dc=openldap,dc=example,dc=com
My goal is to end up with DNs like cn=username,dc=admins,dc=openldap,dc=example,dc=com
I have been unable to find documentation or tutorials that use DCs for common objects in place of OUs.
How do I create a new group node as a domain component instead of an organizational unit?
For reference, I'm trying to implement the best practice design described here.