SSL Version with Sage CRM 2021 R1.1

One of my clients uses Sage CRM 2021 R1.1 integrated with Sage 300 PU2.  Their IT company has been trying to install SSL and it causes the CRM software to fail the scan for PCI compliance.

Is their a specific version of SSL that needs to be installed or does it need to be done differently?

If the CRM website is not published to the internet, that is, CRM is only used internally does that change anything?

Any and all advice greatly appreciated,

Dana