I'm thinking at the following configuration: one database called "dn=wiki,dn=com" which requires objects with following schema
cn: <user1 nickname>
givenname: <user1 first name>
sn: <user1 surname>
o:<either wiki.com or grape.jp depending on who has created the user>
and then setting a proper ACL (olc) on the attribute 'o' in order to defined who can access what (but on this side I need still to understand A LOT).
My configuration is driven from the fact I need also to integrate Liferay 6.1 which needs to see all the user accounts :-(
Let me thank you for having read till here! Any suggestion and/or reference would be highly appreciated.
P.s. I was looking also for a good guide/book on Amazon, but everything looks quite outdated...