Check correct TLS version and ciphers are used

I think we might still support TLS < 1.2 by using the defaults there.