diff --git a/installer/inventory b/installer/inventory
index c181516ae4..65c24b1211 100644
--- a/installer/inventory
+++ b/installer/inventory
@@ -95,3 +95,9 @@ pg_port=5432
 # AWX project data folder. If you need access to the location where AWX stores the projects
 # it manages from the docker host, you can set this to turn it into a volume for the container.
 #project_data_dir=/var/lib/awx/projects
+
+# CA Trust directory. If you need to provide custom CA certificates, supplying
+# this variable causes this directory on the host to be bind mounted over
+# /etc/pki/ca-trust in the awx_task and awx_web containers.
+# NOTE: only obeyed in local_docker install
+#ca_trust_dir=/etc/pki/ca-trust
\ No newline at end of file
diff --git a/installer/local_docker/templates/docker-compose.yml.j2 b/installer/local_docker/templates/docker-compose.yml.j2
index 4535937477..85ac70f9c3 100644
--- a/installer/local_docker/templates/docker-compose.yml.j2
+++ b/installer/local_docker/templates/docker-compose.yml.j2
@@ -15,10 +15,16 @@ services:
     hostname: awxweb
     user: root
     restart: unless-stopped
-    {% if project_data_dir is defined %}
+    {% if (project_data_dir is defined) or (ca_trust_dir is defined) %}
     volumes:
+    {% endif %}
+    {% if project_data_dir is defined %}
       - "{{ project_data_dir +':/var/lib/awx/projects:rw' }}"
     {% endif %}
+    {% endif %}
+    {% if ca_trust_dir is defined %}
+      - "{{ ca_trust_dir +':/etc/pki/ca-trust:ro' }}"
+    {% endif %}
     {% if (awx_container_search_domains is defined) and (',' in awx_container_search_domains) -%}
     {% set awx_container_search_domains_list = awx_container_search_domains.split(',') %}
     dns_search: