diff --git a/tests/net/socket/tls/prj.conf b/tests/net/socket/tls/prj.conf
index 4b5a4a8d1a8d..9302ed1659e1 100644
--- a/tests/net/socket/tls/prj.conf
+++ b/tests/net/socket/tls/prj.conf
@@ -52,4 +52,9 @@ CONFIG_MBEDTLS_HEAP_SIZE=30000
 CONFIG_MBEDTLS_SSL_DTLS_CONNECTION_ID=y
 CONFIG_MBEDTLS_PSA_KEY_SLOT_COUNT=32
 CONFIG_MBEDTLS_CIPHERSUITE_TLS_PSK_WITH_AES_256_CBC_SHA384=y
-CONFIG_MBEDTLS_CIPHERSUITE_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256=y
+
+# For tests verifying certificate validation
+CONFIG_MBEDTLS_X509_CRT_PARSE_C=y
+CONFIG_PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY=y
+CONFIG_PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_IMPORT=y
+CONFIG_PSA_WANT_ALG_RSA_PKCS1V15_SIGN=y
diff --git a/tests/net/socket/tls/src/main.c b/tests/net/socket/tls/src/main.c
index 5db92a18ff36..f8b04900974e 100644
--- a/tests/net/socket/tls/src/main.c
+++ b/tests/net/socket/tls/src/main.c
@@ -66,6 +66,9 @@ static void test_config_psk(int s_sock, int c_sock)
 	sec_tag_t sec_tag_list[] = {
 		PSK_TAG
 	};
+	const int cipher_list[] = {
+		MBEDTLS_TLS_PSK_WITH_AES_256_CBC_SHA384,
+	};
 
 	(void)tls_credential_delete(PSK_TAG, TLS_CREDENTIAL_PSK);
 	(void)tls_credential_delete(PSK_TAG, TLS_CREDENTIAL_PSK_ID);
@@ -81,12 +84,18 @@ static void test_config_psk(int s_sock, int c_sock)
 		zassert_equal(zsock_setsockopt(s_sock, ZSOCK_SOL_TLS, ZSOCK_TLS_SEC_TAG_LIST,
 					 sec_tag_list, sizeof(sec_tag_list)),
 			      0, "Failed to set PSK on server socket");
+		zassert_equal(zsock_setsockopt(s_sock, ZSOCK_SOL_TLS, ZSOCK_TLS_CIPHERSUITE_LIST,
+					 cipher_list, sizeof(cipher_list)),
+			      0, "Failed to set ciphersuite list on server socket");
 	}
 
 	if (c_sock >= 0) {
 		zassert_equal(zsock_setsockopt(c_sock, ZSOCK_SOL_TLS, ZSOCK_TLS_SEC_TAG_LIST,
 					 sec_tag_list, sizeof(sec_tag_list)),
 			      0, "Failed to set PSK on client socket");
+		zassert_equal(zsock_setsockopt(c_sock, ZSOCK_SOL_TLS, ZSOCK_TLS_CIPHERSUITE_LIST,
+					 cipher_list, sizeof(cipher_list)),
+			      0, "Failed to set ciphersuite list on client socket");
 	}
 }