1. The domain must point to the server
   • The correct DNS A/AAAA records must have been made
2. HTTP must be active (port 80)
3. No old 301/302 redirects should prevent verification
4. There should be no .htaccess block that cuts off /.well-known/acme-challenge/