I have SSL Policy enabled on some ACs. Everything was working fine for a while until today I upgraded FMC and Firepower to 220.127.116.11 from 18.104.22.168. Our workers started complaining about not being able to connect to webmail. I checked connection events and saw that connections are block because SSL Policy with reason EC Curve not supported. I tried couple workarounds from BUGs and forums but with no result.
First of all I wonder why it started not to work after upgrading the patch. Moreover, I want to know why connection contains EC curves. My certificate is RSA based.
Go straight to TAC with this issue.
You may be hitting this behavior:
The fix is easy but should only be done after TAC confirms and recommends it.