Database Schema Best Practices

Do not modify standard schemas

The standard schema files in /opt/symas/etc/openldap/schema are overwritten during upgrades of OpenLDAP and any changes made will be lost.  Instead, all changes should be made in custom .schema files.

Separate custom schemas from standard schemas

Custom schemas should be stored in a separate folder from the standard schema files.  Separating schemas will ensure the custom ones aren’t deleted/overwritten during OpenLDAP upgrades.  We recommend storing custom schemas in the following path:

Unix/Linux: /opt/symas/etc/openldap/local-schema