diff --git a/roles/bind-authoritative/templates/bind/named.conf.local.j2 b/roles/bind-authoritative/templates/bind/named.conf.local.j2
index 9752be76..e11f50c3 100644
--- a/roles/bind-authoritative/templates/bind/named.conf.local.j2
+++ b/roles/bind-authoritative/templates/bind/named.conf.local.j2
@@ -35,6 +35,29 @@ zone "_acme-challenge.crans.org" {
 	file "bak._acme-challenge.crans.org";
 };
 
+// Let's Encrypt Challenge DNS-01 zone
+zone "_acme-challenge.adm.crans.org" {
+{% if is_master %}
+	type master;
+	notify yes;
+	update-policy {
+		grant certbot_challenge. name _acme-challenge.adm.crans.org. txt;
+	};
+{% else %}
+	type slave;
+	masters {
+{% for ip in masters_ipv4 %}
+		{{ ip }};
+{% endfor -%}
+{% for ip in masters_ipv6 %}
+		{{ ip }};
+{% endfor %}
+	};
+	notify no;
+{% endif %}
+	file "bak._acme-challenge.adm.crans.org";
+};
+
 zone "_acme-challenge.crans.fr" {
 {% if is_master %}
 	type master;