You want your connection to look like this.
The connection to this site is encrypted and authenticated using TLS 1.2 (a strong protocol), ECDHE_RSA with X25519 (a strong key exchange), and AES_256_GCM (a strong cipher).
You can use IIS Crypto 2.0 to eliminate the obsolete SSL/TLS properties, which I am not sure why are showing on IIS 10. You can run the tool, select best practices, and then apply. You may want to redo your certificate after as well.
EDIT:
