Hi @abraunegg
then you have used tls-sni-01 - validation. But this is deprecated, support ends 2019-02-13:
So you have to use another validation method: http-01 or dns-01.
http-01 requires an open port 80. If you can't open port 80, you have to use dns-01 - validation.
There is another - rare supported and used - TLS-ALPN-01.