Adds a Root CA to the Jenkins Keystore so you can connect to URLs with TLS certificates that may not exist in the Java default store. Change "openjdk21" to the current version of Java.
fetch -qo /tmp/alt_ca.crt http://cdn.pacyworld.com/pacyworld.com/ca/alt_ca-morante_root.crt
cp /usr/local/openjdk21/lib/security/cacerts /usr/local/etc/ssl/
keytool -import -trustcacerts -file /tmp/alt_ca.crt -alias "Pacy World Root CA" -keystore /usr/local/etc/ssl/cacerts
sysrc jenkins_java_opts="-Djavax.net.ssl.trustStore=/usr/local/etc/ssl/cacerts"
service jenkins restart
.png)