Thanks for the clarification. I understood that this behaviour will violate the specifications, however this should be useful to some people. So the possibility to compare the userPassword hashed value with a cleartext value, for the standards sake, should be implemented in an (optional) overlay.
Right?
