You could check the download server tls version using SSL Server Test (Powered by Qualys SSL Labs) to see if it supports tls 1.2
To replicate my tls issue we have the following deployed on the company workstations to block all old ssl/tls version and only support tls 1.2
Below a screenshot of the tls/ssl settings created with iis crypto Nartac Software - IIS Crypto which is used to disable all other protocols.