Ah, thanks, checked, good to know.
But your setup can't work:
That's
| TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f) ECDH secp521r1 (eq. 15360 bits RSA) FS | 128 |
|---|---|
| TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030) ECDH secp521r1 (eq. 15360 bits RSA) FS | 256 |
| TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca8) ECDH secp521r1 (eq. 15360 bits RSA) FS | 256 |
too limited. Windows doesn't support GCM with RSA and no Chacha20. So there is no matching Cipher suite.
Yes, you have to use the deprecated CBC, so you will have a Grade B.