You should read our blog post on TLS in Docker for more context on why we've chosen to build single, self-contained custom images that add complete TLS certificate lifecycle automation.
Here's a few Docker images that add self-contained, automated TLS certificate management to common Docker services:
All of these examples use the step-ca Certificate Authority server. If you don't want to run your own CA, try our Certificate Manager hosted CA to get going quickly.
You'll need a CA URL and root fingerprint to build these images.
Inside the container, the step CLI tool performs certificate management functions.