No, but wherever it is, you should be able to use certbot is you have a domain name pointing to your server and something like nginx to use it. If you set up nginx as a reverse proxy to the applications running on the server, all of them can use the same certificate.
Discussion
I've only set up certs a few times but only on my windows servers. I've never run a public Linux server. Always just used Argo tunnels for semi public stuff and tailscale. But I can't run BTC pay Server without a full secure connection from origin to cloudflared. I think I just need to stop the umbrel service before I can run certbot.
Definitely play around with it. How do you access umbrel as you have it set up now? Is it possible to change the port that umbrel runs on?
It's possible but not advised. Umbrel runs in a docker container and changing the config directly is not recommended. rn any app running on my umbrel I want public access to goes through an argo cloudflared tunnel. Any personal app, (cloud, photos, nodes etc) go through tailscale.