Our live website is now down: unable to connect to the openid-conficuration endpoint. Called from .NET on IIS WebServer. Suddenly started failing at around 15:45.
I received an email on 19th Jan but I clearly didn’t realise the significance. I knew our WebServer supported TLS 1.2 and 1.3 and didn’t realise that .NET would insist on using TLS 1.0 if the later protocols were available.