NSX-T Manager Certificate Creation Does Not Include IP SAN

[lancefrench]

In nsxt-3-0-install.html.md.erb we specify a certificate configuration file and certificate generation command generates a certificate without a Subject Alternative Name despite our intention to do so.

Once we specify the openssl x509 command, the req_extensions section of our configuration, which includes the SAN, is ignored.

[cf-gitbot]

We have created an issue in Pivotal Tracker to manage this. Unfortunately, the Pivotal Tracker project is private so you may be unable to view the contents of the story.

The labels on this github issue will be updated when the story is started.

[lancefrench]

Busted as of 2da9754 I suggest copying the subjectAltName configuration under the SAN section if v3_ca is necessary per the "engineering feedback" or reverting the configuration to a previous working version.

Happy to submit a pull request if there's more context on the engineering feedback.