I am trying to configure a bypass access policy to allow let’s encrypt to renew my domains but it seems that when I create a policy access with a wildcard (*) as ‘subdomain’ value and .well-known/acme-challenge as ‘path’ value, the policy does not work.
But when I specify a subdomain, it works well.
I searched in the FAQ for information about wildcard access policy combined with a specific path but found nothing as well as here.
If you’re trying to create a path value that applies to subdomains and the root domain, your path needs to have a wildcard with no period after it, eg *example.com/.... Try that and see if it solves the problem.