diff --git a/deployment/sandbox-v2/roles/nginx/tasks/update_conf.yml b/deployment/sandbox-v2/roles/nginx/tasks/update_conf.yml
index 6bee79640..5c4e2eef7 100644
--- a/deployment/sandbox-v2/roles/nginx/tasks/update_conf.yml
+++ b/deployment/sandbox-v2/roles/nginx/tasks/update_conf.yml
@@ -25,6 +25,17 @@
     dest: '/usr/share/nginx/html/index.html'
   become: yes
 
+- name: nginx ssl conf template to yml
+  template:
+    src: ssl_conf.yml.j2
+    dest: '{{tmp_dir}}/ssl.conf'
+
+- name: Copy new conf file
+  copy:
+    src: '{{tmp_dir}}/ssl.conf'
+    dest: '/etc/nginx/conf.d/ssl.conf'
+  become: yes
+
 - name: Set symlink to mosip versions file
   file: 
     src: '{{install_root}}/versions.yml'
diff --git a/deployment/sandbox-v2/roles/nginx/templates/ssl_conf.yml.j2 b/deployment/sandbox-v2/roles/nginx/templates/ssl_conf.yml.j2
new file mode 100644
index 000000000..261712505
--- /dev/null
+++ b/deployment/sandbox-v2/roles/nginx/templates/ssl_conf.yml.j2
@@ -0,0 +1 @@
+ssl_ciphers "ECDHE-ECDSA-CHACHA20-POLY1305 ECDHE-RSA-CHACHA20-POLY1305 DHE-RSA-CHACHA20-POLY1305 EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA HIGH !RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS";
\ No newline at end of file