Bind certkey and ECC curve command to service/servicegroup/internal service is not seen in sh run and it is not getting saved in ns.conf.
Example:
> sh ssl service nshttps-127.0.0.1-443
Advanced SSL configuration for Internal SSL Service (Front-End) nshttps-127.0.0.1-443:
DH: DISABLED
DH Private-Key Exponent Size Limit: DISABLED Ephemeral RSA: ENABLED Refresh Count: 0
Session Reuse: DISABLED
Cipher Redirect: DISABLED
ClearText Port: 80
Client Auth: DISABLED
SSL Redirect: DISABLED
Non FIPS Ciphers: DISABLED
SNI: DISABLED
OCSP Stapling: DISABLED
SSLv3: DISABLED TLSv1.0: DISABLED TLSv1.1: DISABLED TLSv1.2: ENABLED TLSv1.3: DISABLED
Send Close-Notify: YES
Strict Sig-Digest Check: DISABLED
Zero RTT Early Data: ???
DHE Key Exchange With PSK: ???
Tickets Per Authentication Context: ???
1) CertKey Name: c1 Server Certificate
1) Cipher Name: ECDHE
Description: Elliptic Curve Ephemeral DH Ciphers
Done
> sh run | grep nshttps-127.0.0.1-443
set ssl service nshttps-127.0.0.1-443 -eRSA ENABLED -sessReuse DISABLED -ssl3 DISABLED -tls1 DISABLED -tls11 DISABLED -dtls1 DISABLED
bind ssl service nshttps-127.0.0.1-443 -cipherName ECDHE