To do this you will need to configure multiple separate LDAP urls for each OU and utilize AuthnProviderAlias to check both urls.
Please see the link below for more information.