diff --git a/egress-gateway.nomad.hcl b/egress-gateway.nomad.hcl
index cfe34d8..8512674 100644
--- a/egress-gateway.nomad.hcl
+++ b/egress-gateway.nomad.hcl
@@ -38,10 +38,14 @@ job "[[ .instance ]]" {
     # Dummy task to configure custom CA certificates
     # Needed because template is not supported in sidecar_task
     task "ca-certs" {
-      driver = "exec"
+      # Use docker instead of exec as it's broken on EL8. See https://github.com/hashicorp/nomad/issues/20212
+      driver = "docker"
 
       config {
-        command = "/bin/true"
+        image           = "[[ .docker.repo ]][[ .docker.base_images.alpine.image ]]"
+        readonly_rootfs = true
+        pids_limit      = 10
+        command         = "/bin/true"
       }
 
       # The task will just quit immediatly, mark it as a prestart hook
diff --git a/example/egress-gateway.nomad.hcl b/example/egress-gateway.nomad.hcl
index 15a5b44..dc96a50 100644
--- a/example/egress-gateway.nomad.hcl
+++ b/example/egress-gateway.nomad.hcl
@@ -38,10 +38,14 @@ job "egress-gateway" {
     # Dummy task to configure custom CA certificates
     # Needed because template is not supported in sidecar_task
     task "ca-certs" {
-      driver = "exec"
+      # Use docker instead of exec as it's broken on EL8. See https://github.com/hashicorp/nomad/issues/20212
+      driver = "docker"
 
       config {
-        command = "/bin/true"
+        image           = "danielberteaud/alpine:24.3-1"
+        readonly_rootfs = true
+        pids_limit      = 10
+        command         = "/bin/true"
       }
 
       # The task will just quit immediatly, mark it as a prestart hook