I was curious to know what the best way would be to manage my certificate renewal for the cockpit web interface.
So far, I've successfully managed to create my certificate with certbot but I've had to copy the files manually to /etc/cockpit/ws-certs.d/ and fix the permissions on the files to get everything working properly.
Should I be using a deploy-hook and a custom script to ensure that the certificate is properly renewed using certbot-renew.timer ?
I'm currently using certbot 1.12.0 on Fedora Server 33.
Any advice would be greatly appreciated!