diff --git a/tasks/configure-vhost.yml b/tasks/configure-vhost.yml
index 1f5f799..093c267 100644
--- a/tasks/configure-vhost.yml
+++ b/tasks/configure-vhost.yml
@@ -56,7 +56,7 @@
   register: vhost_changed
 
 - name: "Create certificate"
-  shell: "certbot certonly --non-interactive  --webroot --email {{ nginx_letsencrypt_email }} --agree-tos --webroot-path=/var/www/letsencrypt {% for domain in item.server_name %} -d {{ domain }} {% endfor %} --expand --rsa-key-size 4096;"
+  shell: "certbot certonly --non-interactive  --webroot --email {{ nginx_letsencrypt_email }} --agree-tos --webroot-path=/var/www/letsencrypt {% for domain in item.server_name %} -d {{ domain }} {% endfor %} --expand --key-type ecdsa --elliptic-curve sec p384r1;"
   when: 
     - item.ssl 
     - item.letsencrypt