Greetings, I have an $OpenLDAP: slapd 2.4.23 on centos 6.4 installed and i need to extend the schema to fit my setup.

all i need is to add to my users in ou People a simple boolean attribute named vpnStatus that i want to be the basis upon which users are given vpn access or not.

i created /etc/openldap/schema/local.schema containing

attributetype ( 1.2.3.4.5.6.7.000.1 NAME 'accountStatus' DESC 'boolean - defines if user has access to vpn' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )

the OID is random picked.

i restarted slapd without error but i can't find this attribute anywhere. i have apache directory studio used for editing and lam as a web gui and i can't find it there either. i'm a bit confused.

then i tried to export this attribute as ldif (using apache ds) and import it using cli tools:

ldapadd -x -W -h 127.0.0.1 -D "cn=Manager,dc=example,dc=com" -f /tmp/vpnSchema.ldif

Enter LDAP Password: adding new entry "cn=vpnSchema, ou=schema" ldap_add: Invalid syntax (21) additional info: objectclass: value #0 invalid per syntax

what do i need to do ?