The following cipher suites need to be enabled based on the server version of the application servers to communicate with Apple for the new HTTP/2 change that will go into effect early next year (2021):
“TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384”(windows server 2016 and later) - This is handled by a crypto library in the product for OS's that do not support it.
"TLS_RSA_WITH_AES_256_CBC_SHA “(windows 2012 R2 and earlier)