...
To manage TLS 1.2 permissions requires intimate knowledge of the registry. See these Microsoft articles for more information: https://docs.microsoft.com/en-us/windows-server/security/tls/tls-registry-settings and https://docs.microsoft.com/en-US/troubleshoot/windows-server/windows-security/restrict-cryptographic-algorithms-protocols-schannel To simplify the management of these settings, we use the program IIS Crypto from Nartec Software at Tricerat and it makes managing these security settings as easy as clicking a button. See their documentation here https://www.nartac.com/Products/IISCrypto for a complete description. We recommend using the Best Practices button. Make sure you understand the TLS/SSL requirements of other software you may use as weak protocols may be disabled by IIS Crypto. When making changes, a reboot is always necessary!
A good practice is to always backup the registry before making changes. IIS Crypto even has a button to help with that!. See the Advanced tab and the Backup Registry button.