You can add tdatUser objects in the directory as members of a mechanism.
dn: cn=ldap,cn=mechanisms,cn=policy1,cn=tdatrootP,dc=domain1,dc=com changetype: modify add: member member: cn=jcm,cn=users,cn=system1,cn=tdatrootA,dc=domain1,dc=com
When addition of a directory principal member is required, enter:
member: uid=dirUser1,ou=principals,dc=domain1,dc=com