I have a client who wants TSL1.0 and 1.1 disabled for their website.
I did that using powershell on the windows 2012R2 server. Perfect. But my MS SQL 2012 server on the machine became inaccessible, so I had to enable the protocols again.
I have been struggling to find ways to only deactivate these for IIS or possibly specific site.
Hope someone can help
Both IIS and SQL server run Schannel. And its far ahead IIS pipeline. So I'm afraid it's impossible to disable TLS 1.0 AND 1.1 for IIS site separately. Besides, disable TLS1.0 and 1.1 is not kind of best performance operation.
If you still require to disable TLS 1.0 and 1.1, then please focus on troubleshooting sql server inaccessible issue via network monitor. But I think you should disable SSL 2.0, 3.0 more than TLS 1.0 1.1.