Microsoft implemented TLS 1.3 in most secure way by RFC. IIS wants to perform post-handshake authentication, but some browsers do not support it in default configuration, you can try using other browsers (Firefox is recommended), so, de facto IIS default configuration for two-way SSL with common browsers do not work with IIS when TLS 1.3 only is enabled.
You can enable IIS and TLS 1.3 only configuration by enabling in-handshake method for IIS instead on post-handshake method.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.