diff --git a/Production/nginx.tmpl b/Production/nginx.tmpl
index 6a1b926..b2bca24 100644
--- a/Production/nginx.tmpl
+++ b/Production/nginx.tmpl
@@ -514,7 +514,19 @@ server {
 	listen [::]:80 {{ $default_server }};
 	{{ end }}
 	access_log /var/log/nginx/access.log vhost;
-	return 301 https://$host$request_uri;
+
+	# Allow acme challenge requests without redirect
+	location ^~ /.well-known/acme-challenge/ {
+		allow all;
+		root /usr/share/nginx/html;
+		try_files $uri =404;
+		break;
+	}
+
+	# Redirect all other requests to HTTPS
+	location / {
+		return 301 https://$host$request_uri;
+	}
 }
 {{ end }}