A lot of people succeed in using the DNS-01 challenge with automated renewal. They need to have a DNS provider API which allows software to make DNS changes without human intervention.
This can be viewed as a security risk in its own right, but many people have regarded it as a good solution.
There is an approach that reduces these risks, described at