The client machine is negotiating a version of TLS/SSL that is not acceptable for a specific website. (Security reasons, interoperability with OCS, etc). You can force proxy to use specific TLS version. 

The following configuration can be applied from either VPM or CPL.

Web VPM Method

1. Create SSL Access Layer
2. Create a new Rule. Adjust the source and destination objects.
3. In the Action field, select:
    a)SetServerMinMaxSSLVersion1 - adjust to desired settings
4. Save changes

CPL Code Method: