(Answer) (Category) OpenLDAP Faq-O-Matic : (Category) OpenLDAP Software FAQ : (Category) Configuration : (Category) SLAPD Configuration : (Category) Schema : (Answer) How do I allow an attribute type to be added to existing entries?
To augment existing objects with additional attribute types, it best to use an auxiliary object class. An auxiliary object class purpose is to allow a additional attribute types to be added to an entry.

For example, if you want to add krbName attribute type to a number of entries, you can edit your slapd.conf(5) or local schema file to include an objectclass:

objectclass ( <custom oid>
  NAME kerberosSecurityObject
  DESC 'Kerberos security object'
  MUST ( objectClass $ krbName ) )
Then, after restarting slapd, you can modify entries to such that the are of objectclass kerberosSecurityObject and have a krbName attribute.
  % ldapmodify -D <RootDN> -W <<EOF
  dn: uid=archie, dc=openldap, dc=org
  changetype: modify
  add: objectclass
  objectclass: kerberosSecurityObject
  -
  add: krbName
  krbName: archie@openldap.org

  EOF
One could also place the LDIF in a file and use the -f option of ldapmodify(1).
[Append to This Answer]
Previous: (Answer) How do I keep my private schema items from clashing with standard track items?
Next: (Answer) Do I need to assign an OID to each schema item?
This document is: http://www.openldap.org/faq/index.cgi?file=222
[Search] [Appearance]
This is a Faq-O-Matic 2.721.test.
© Copyright 1998-2013, OpenLDAP Foundation, info@OpenLDAP.org