diff --git a/puppetserver/docker-entrypoint.d/90-ca.sh b/puppetserver/docker-entrypoint.d/90-ca.sh
index 14d4dc1c..fab9de05 100755
--- a/puppetserver/docker-entrypoint.d/90-ca.sh
+++ b/puppetserver/docker-entrypoint.d/90-ca.sh
@@ -60,10 +60,14 @@ else
       exit 99
     fi
 
-    puppetserver ca import \
-      --cert-bundle $INTERMEDIATE_CA_BUNDLE \
-      --crl-chain $INTERMEDIATE_CRL_CHAIN \
-      --private-key $INTERMEDIATE_CA_KEY
+    if [[ -f /etc/puppetlabs/puppet/ssl/certs/ca.pem ]]; then
+      echo "CA already imported."
+    else
+      puppetserver ca import \
+        --cert-bundle $INTERMEDIATE_CA_BUNDLE \
+        --crl-chain $INTERMEDIATE_CRL_CHAIN \
+        --private-key $INTERMEDIATE_CA_KEY
+    fi
   else
     new_cadir=/etc/puppetlabs/puppetserver/ca