test_ldap: Read a publicly accessible attribute when testing anonymous bind

The usercertificate attribute is slated to not be readable for
anonymous users. Use associateddomain in $SUFFIX instead.

Reviewed-By: Martin Kosek <mkosek@redhat.com>

ipatests/test_ipaserver/test_ldap.py

@@ -61,11 +61,10 @@ class test_ldap(object):
         """
         self.conn = ldap2(shared_instance=False, ldap_uri=self.ldapuri)
         self.conn.connect()
-        entry_attrs = self.conn.get_entry(self.dn, ['usercertificate'])
+        dn = api.env.basedn
-        cert = entry_attrs.get('usercertificate')
+        entry_attrs = self.conn.get_entry(dn, ['associateddomain'])
-        cert = cert[0]
+        domain = entry_attrs.single_value['associateddomain']
-        serial = unicode(x509.get_serial_number(cert, x509.DER))
+        assert domain == api.env.domain
-        assert serial is not None
 
     def test_GSSAPI(self):
         """