What is the name of the domain?
stag.lol
What is the issue you’re encountering
I have several subdomains protected behind Cloudflare Access. I need to use Let’s Encrypt HTTP-01 challenge to verify my domain (DNS is not an option), so the problem is that foo.bar.com/.well-known/acme-challenge/* is also behind Cloudflare Access. I can solve this by creating another application matching the acme-challenge URL, and setting the policy to Bypass Everyone. The issue is that I have a lot of different subdomains, and I don’t want to have to create this bypass for every application (I’d also need several, since you can only match 5 domains with one application). I’ve tried using .bar.com/.well-known/acme-challenge/, however this doesn’t work, the page is still blocked. I’m pretty sure this is because there’s a wildcard in the domain, so it has a lower priority: Application paths · Cloudflare Zero Trust docs I’m not sure how I’d work around that though, since I don’t see a way to manually specify a priority.