The idmpasswd attribute is defined as an operational attribute. Operational attributes do not require any changes to the objectclass definitions of the target entry. As a result, existing or new users in Directory Server do not need to be modified to use the password synchronization feature.
The idmpasswd attribute is defined in the schema as follows:
attributeTypes: ( idmpasswd-oid NAME ’idmpasswd’ DESC ’IdM Password’ SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} USAGE directoryOperation X-ORIGIN ’ Waveset’ )