diff --git a/deployments/examples/ocis_ldap/config/ldap/ldif/04_internal.ldif b/deployments/examples/ocis_ldap/config/ldap/ldif/04_internal.ldif
new file mode 100644
index 00000000000..907d2197687
--- /dev/null
+++ b/deployments/examples/ocis_ldap/config/ldap/ldif/04_internal.ldif
@@ -0,0 +1,8 @@
+# groupOfNames requires at least one member to be present
+# The refint will use this dn if the last member of the group
+# has been removed
+dn: cn=nobody,dc=owncloud,dc=com
+objectClass: top
+objectClass: organizationalRole
+description: to be used for refint in empty groups
+cn: nobody
diff --git a/deployments/examples/ocis_ldap/config/ldap/ldif/05_memberofconf.ldif b/deployments/examples/ocis_ldap/config/ldap/ldif/05_memberofconf.ldif
new file mode 100644
index 00000000000..8ed186c8a5b
--- /dev/null
+++ b/deployments/examples/ocis_ldap/config/ldap/ldif/05_memberofconf.ldif
@@ -0,0 +1,14 @@
+# configure memberof overlay to use groupOfNames and member attributes
+dn: olcOverlay={0}memberof,olcDatabase={1}mdb,cn=config
+changetype: modify
+replace: olcMemberOfGroupOC
+olcMemberOfGroupOC: groupOfNames
+-
+replace: olcMemberOfMemberAD
+olcMemberOfMemberAD: member
+
+# configure refint overlay to use nobody if no member is present
+dn: olcOverlay={1}refint,olcDatabase={1}mdb,cn=config
+changetype: modify
+replace: olcRefintNothing
+olcRefintNothing: cn=nobody,dc=owncloud,dc=com