To become PCI compliant I need to disable SSLv 2 & 3 as well as TLS 1.0 on my mail server. On my mail server I tried to disable all of those and enable TLS 1.1 and 1.2. It was all good until I tried to disable TLS 1.0 which left just TLS 1.1 and 1.2. This is when my mail wouldn't work for my company.
We have a hub 2010 Exchange server on server 2008 R2 SP1 that all my settings are setup on. We also have a 2010 Exchange Database server on Windows Server 2008 R2 SP1. (Do I need to make SSL/TLS changes on this server to?)
I put the usual reg keys to disable:
disabledbydefault - Dword value of 1
Enabled - Dword value of 0
enabled TLS 1.1 and 1.2:
disabledbydefault - Dword value of 0
Enabled - Dword value of 1
I hope this is enough information.