Our customer has been hosted on premise Exchange Server 2013 and currently would like to disable the lower version support of TLS/SSL due to some security requirements.
There is no test server (Exchange Server 2013) at our customer’s environment. It is critical for us to apply/fix the configuration required. Need your clarification on what is the recommendation or advise for us to fix this issue. Is it compulsory for us to fix it?
From our findings, there is a recommendation for us to use IIS Cryptor Tool to disable those features and protocol.Since this is a 3<sup>rd</sup> party tool and site that discussed about this matter, I dare not to test it at my customer environment.
Please help to advise us on this matter since customer is worry about this security matters.
Thanks & regards,
Mohamed Ismail