我正在尝试使用external-ca设置交换矩阵网络,因此我必须为所有对等方和客户端注册并注册证书,以及正在使用LDAP服务器的证书注册。
生成所有内容并启动网络后,链码实例化存在一些问题,例如链码容器启动了,但是在对等节点上列出链码时,结果集为空。检查对等和订购者日志后: 同行记录警告:
isn't eligible for channel testchannel : implicit policy evaluation failed - 0 sub-policies were satisfied, but this policy requires 1 of the 'Readers' sub-policies to be satisfied
错误:
[blocksProvider] DeliverBlocks -> ERRO 4488e [testchannel] Got error &{FORBIDDEN}
[blocksProvider] DeliverBlocks -> ERRO 4488f [testchannel] Wrong statuses threshold passed, stopping block provider
订购者日志:
[common.deliver] deliverBlocks -> WARN 263d [channel: testchannel] Client authorization revoked for deliver request from xx.xx.xx.xx:38880: implicit policy evaluation failed - 0 sub-policies were satisfied, but this policy requires 1 of the 'Readers' sub-policies to be satisfied: permission denied
我据此解释的是,管理证书和对等证书存在一些问题,因为它们是使用LDAP注册的,其中没有用于定义身份ID类型的选项。