The Enforced TLS settings specify whether or not the recipient is required to
support TLS or have a valid certificate.
If either setting is enabled and the recipient does not support TLS 1.1 or higher or have a
valid certificate, we drop the message and send a block event with “TLS required
but not supported” as the description.