What Cipher Suites are used with TLS 1.2 in ITMS 8.x?
ITMS 8.0 seems to be using: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256
The cipher usage depends on the Windows OS version, the later version the more sophisticated algorithms are available.
SMA (Symantec Management Agent) does not select the algorithm set and does not restrict the algorithms usage, we’re relying on SCHANNEL to select the algorithm, then the client and server negotiate on the algorithm during the SSL handshake. If an algorithm is disabled in the OS then it will not be used by ITMS. You can use IISCrypto (https://www.nartac.com/Products/IISCrypto) to disable or enable the algorithms in the OS or modify the registry where it is configured directly as shown here:
An example of the Windows 10 cipher suites enabled by default and their specified priority by Microsoft's Schannel Provider is shown in: