I spoke to AW Support about this back in February 2018, I tried enabling TLS 1.2 and disabling TLS 1.0/1.1 but couldn't ever get it working.
I used the following article: https://support.workspaceone.com/articles/115001666088
And raised a support request as the SEG information was missing, I got the following back from support:
The default TLS settings can be overridden for each AirWatch application and service by updating each configuration file to explicitly indicate the use of a particular setting: The file path on the SEG server is ../AirWatch/AirWatch x.x/AW.Eas.Web.Listener/web.config In the configuration file, add a new entry to the section as follows:
For TLS 1.2 only:
' <add key=”OutboundTlsProtocols” value=”Tls12” />'
For TLS 1.0, 1.2:
' <add key=”OutboundTlsProtocols” value=”Tls, Tls12” />'
For TLS 1.0, 1.1, 1.2:
' <add key=”OutboundTlsProtocols” value=”Tls, Tls11, Tls12” />'
I had to put quotes in to display the commands. Ignore the first and last quotes.
Have anyone successfully disabled TLS 1.0 and 1.1 on Mag, Seg servers? just use TLS 1.2?