To enable TLS 1.2 for Windows 7, you will need to patch your system to modify the registry. Be sure your system is fully updated through the update center, then download and install the patch from Microsoft's website
1. How to get this update
If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, please refer to the below KB,
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-8.1-and-8/hh825699(v=win.10)?redirectedfrom=MSDN
Method 1: Windows Update
1. Click Start, type update in the search box, and in the list of results, click Windows Update.
2. In the details pane, click Check for updates and then wait while Windows looks for the latest updates for your computer.
3. If you see a message telling you that important or optional updates are available, or telling you to review important or optional updates, click the message to view the updates to install.
4. In the list, select the check box for the updates that you want to install, click OK, and then click Install updates.
Prerequisites
To apply this update, you must install Service Pack 1 for Windows 7. You can refer to the below KB for the same.
https://support.microsoft.com/en-us/topic/information-about-service-pack-1-for-windows-7-and-for-windows-server-2008-r2-df044624-55b8-3a97-de80-5d99cb689063
Registry information
To apply this update, the DefaultSecureProtocols registry subkey must be added.
Note: To do this, you can add the registry subkey manually or install the "Easy fix" to populate the registry subkey. Use the below link for downloading EasyFix.
https://download.microsoft.com/download/0/6/5/0658B1A7-6D2E-474F-BC2C-D69E5B9E9A68/MicrosoftEasyFix51044.msi
After downloading, Run or Open, and then follow the steps in the easy fix wizard.
Enable TLS 1.1 and 1.2 on Windows 7
For TLS 1.1 and 1.2 to be enabled and negotiated on Windows 7, you MUST create the "DisabledByDefault" entry in the appropriate subkey (Client) and set it to "0". These subkeys will not be created in the registry since these protocols are disabled by default.
Create the necessary subkeys for TLS 1.1 and 1.2; create the DisabledByDefault DWORD values and set it to 0 in the following locations:
For TLS 1.1
Registry location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client
DWORD name: DisabledByDefault
DWORD value: 0
For TLS 1.2
Registry location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client
DWORD name: DisabledByDefault
DWORD value: 0
You may have to restart the computer after you apply this update.