-
Use the IISCrypto tool to lock down which protocols and algorithms are available for session negotiation https://www.nartac.com/Products/IISCrypto/Default.aspx
-
Test the available SSL cipher suites using Qualys SSL Labs testing tool https://www.ssllabs.com/ssltest/index.html