In multi server setup were web and mail are 2 different servers the cron which updates expired certs with letsencrypt runs on the web server, there fore I have to manually copy the new certs to the mail server and change the certs of postfix and dovecot to match the new ones. Is there any way to automatically get the certs from the web server?
you could write a script that copies them (eg. via scp, maybe using rsync), and run it from a cronjob
I had yet to setup any multi servers, but I was thinking that it may be possible to have different le certs for each server instead, like in this case, so that no import of le certs from web server is needed.
for a long-term solution, acme.sh could work nicely for non-web servers, using DNS auth; I think I remember mention of adding acme.sh support in time, this is just one (more?) use case to keep in mind.
I also think that would be the best for multiserver. Do refer to sjau's post where it is possible to customize acme.sh like renewal and restart of relevant services etc.