Check_nrpe with strong cipher on icinga2

How to enable strong ciphers with authentication ssl certficates in nrpe daemon.
I need to avoidn anonymous ciphers…
[root@ansible03cloud ~]# nmap --script ssl-enum-ciphers -p 5666 172.20.45.3
Starting Nmap 7.92 ( https://nmap.org ) at 2024-08-23 17:00 CEST
Nmap scan report for 172.20.45.3
Host is up (0.026s latency).

PORT STATE SERVICE
5666/tcp open nrpe
| ssl-enum-ciphers:
| TLSv1.2:
| ciphers:
| TLS_ECDH_anon_WITH_AES_256_CBC_SHA (ecdh_x25519) - F
| TLS_ECDH_anon_WITH_AES_128_CBC_SHA (ecdh_x25519) - F
| compressors:
| NULL
| cipher preference: server
| warnings:
| Anonymous key exchange, score capped at F
| Forward Secrecy not supported by any cipher
|_ least strength: F

Well, NRPE is pretty much dead as far as I can see, so you should start to consider other options.
Maybe the SNClient+ if you want to continue with that setup architecture or you could consider to go for a distributed Icinga-Setup.

We are also having the master satellite setup. On which the satellite is making check_nrpe requests to the hosts associated with that particular zone. nrpe daemon is running on that hosts.