diff --git a/nginx/.certbot.lock b/nginx/.certbot.lock
new file mode 100644
index 0000000..e69de29
diff --git a/nginx/nginx.conf b/nginx/nginx.conf
index 99be1af..e8f28a8 100644
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -33,6 +33,8 @@ events {
 }
 
 http {
+server_names_hash_bucket_size 128;
+include /etc/letsencrypt/le_http_01_cert_challenge.conf;
     # --- Configurações Globais Mínimas ---
     sendfile on;
     tcp_nopush on;
diff --git a/nginx/sites-available/cloud.grupopralog.com.br.conf b/nginx/sites-available/cloud.grupopralog.com.br.conf
index 9fcc544..d8cad73 100644
--- a/nginx/sites-available/cloud.grupopralog.com.br.conf
+++ b/nginx/sites-available/cloud.grupopralog.com.br.conf
@@ -33,7 +33,9 @@ upstream officeonline_backend {
     server 172.16.253.101;
 }
 
-server {
+server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
+
+
     listen 80;
     listen [::]:80;
     server_name cloud.grupopralog.com.br;
@@ -45,9 +47,13 @@ server {
     location / {
         return 301 https://$host$request_uri;
     }
+location = /.well-known/acme-challenge/D8ZKClTjpHTDF0-5TuUn6UpqXFCeBdukueXor5Ho4SU{default_type text/plain;return 200 D8ZKClTjpHTDF0-5TuUn6UpqXFCeBdukueXor5Ho4SU.6NQOP-_cyjMVLz8P4PfH0klS5ZH2qgREfeMrgpUfnEk;} # managed by Certbot
+
 }
 
-server {
+server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
+
+
     listen 443 ssl http2;
     listen [::]:443 ssl http2;
     server_name cloud.grupopralog.com.br;
@@ -303,4 +309,6 @@ server {
         proxy_buffering on;
         proxy_request_buffering off;
     }
+location = /.well-known/acme-challenge/D8ZKClTjpHTDF0-5TuUn6UpqXFCeBdukueXor5Ho4SU{default_type text/plain;return 200 D8ZKClTjpHTDF0-5TuUn6UpqXFCeBdukueXor5Ho4SU.6NQOP-_cyjMVLz8P4PfH0klS5ZH2qgREfeMrgpUfnEk;} # managed by Certbot
+
 }