I have a site hosted on Windows with Plesk. I need to both password-protect the root folder, but also wish to use "Let's Encrypt" SSL encryption. Once the password protection is on, attempts to renew the certificate fail because the request to the challenge in /.well-known folder is forbidden due to lack of password. Is there a way aournd this (explicitly removing protection for the subdirectory); if not I will need to disable the password protection, renew the certificate, then re-enable protection; can I do that without losing all the username/passwords?