As companies start to re-mediate vulnerabilities they start to disable certain ciphers. One thing to be aware of is that Windows 2003 does not support AES 128 or 256 ciphers by default. When you disable TripleDES ciphers on Windwos 2003 it will not be able to fall back on AES ciphers as the functionality is not present.
For Windows 2003 to be able to use AES 128/256 ciphers you need to install a hotfix KB948963
You can check if the AES hotfix is currently installed on your system by running: wmic qfe | findstr “KB948963”
When you open IIS crypto you can see the AES ciphers are checked, it doesn’t mean that there is back end functionality to support those ciphers, check if you have the Hotfix KB948963 installed on the system.