userPassword: {crypt} should do it. I'm not sure what the deal is with OpenLDAP regarding this, but I know that ypldapd doesn't handle this properly. :-) -- Luke