diff --git a/server/conf/apache_ispconfig.conf.master b/server/conf/apache_ispconfig.conf.master
index c965e3f11d1aa884f8cc4af0d6a4584da492ca06..79acb9c8934534429e0e99ca889d171dcd3f83d0 100644
--- a/server/conf/apache_ispconfig.conf.master
+++ b/server/conf/apache_ispconfig.conf.master
@@ -6,6 +6,12 @@
 LogFormat "%v %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined_ispconfig
 CustomLog "| /usr/local/ispconfig/server/scripts/vlogger -s access.log -t \"%Y%m%d-access.log\" /var/log/ispconfig/httpd" combined_ispconfig
 
+<IfModule mod_headers.c>
+	<LocationMatch "/.well-known/acme-challenge/*">
+		Header set Content-Type "text/plain"
+	</LocationMatch>
+</IfModule>
+
 <Directory /var/www/clients>
     AllowOverride None
 	<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
@@ -14,13 +20,6 @@ CustomLog "| /usr/local/ispconfig/server/scripts/vlogger -s access.log -t \"%Y%m
 	Order Deny,Allow
 	Deny from all
 	</tmpl_if>
-
- <IfModule mod_headers.c>
-    <LocationMatch "/.well-known/acme-challenge/*">
-      Header set Content-Type "text/plain"
-    </LocationMatch>
-  </IfModule>
-
 </Directory>
 
 # Do not allow access to the root file system of the server for security reasons