You can request the cert for hostname using Webmin Configuration > SSL Settings > Lets Encrypt.
In Lets Encrypt you have to manually type domain name as hostname and doc root “/var/www/html/”
The it will install a cert for webmin. You can then give postfix, dovecot the paths to cert,key and ca files
Thank you for the response. I was able to create the cert and link to the files, however, imap/smtp show “The certificate is not trusted because it hasn’t been verified as issued by a trusted authority using a secure signature.”. EDIT: Is the letsencrypt-ca.pem file, the same as chain.pem?
You probably need to use the fullchain.pem file to also serve the intermediate certificate (letsencrypt X3 or so). The file can be found at /etc/letsencrypt/host.domain.tld/.