Apparently the LetsEncrypt SSL certificate that was issued with the EFA scripts had a key type of ECDSA and not RSA.
I managed to get around this issue by changing the value
Code: Select all
key_type = ecdsa
to
Code: Select all
key_type = rsa
in the cert renewal conf file located at /etc/letsencrypt/renewal/
Once changed, I forced a cert renewal.
Now RSA based tls ciphers are supported.