ldapsearch -x uid=cllee
 1121  ldapmodify -v -x -f test -D "cn=cllee,dc=example,dc=com" -W
The test file is: 
<
dn: uid=cllee,ou=People,dc=example,dc=com
changetype: modify
replace: description
description: the horse in the family, does all kinds of administrative work
-

>
replace can be change to add
mail, jpegPhoto: only in person object

openssl s_client -CAfile /etc/openldap/cacerts/cacert.pem -connect ldap.example.com:636