-
Well that did not work but I found this
https://support.cloudflare.com/hc/en-us/articles/214820528-Validating-a-Let-s-Encrypt-Certificate-on-a-Site-Already-Active-on-Cloudflare
and this
https://community.letsencrypt.org/t/redirect-to-https-causing-problems/60531
Where is this located
The .conf file the letsencrypt client uses for the renewal has authenticator = webroot specified. -