In a production infrastructure where CA PAM A2A clients  are installed, one may want to remove support for  TLS 1.0 

So the question arises as to what version of CA PAM A2A  must be installed in order for the product to work without TLS 1.0 support

CA PAM all supported releases

To fully dispose of any TLS 1.0 dependency it is necessary to have CA PAM A2A client version 4.12.3 (not just 4.12) or later working with java 1.8 or later.

Both version requirements must be met.