It is best best to re-generate the keys and re-issue the certificates using modern security standards and algorithms.
If this task is outside your scope, report the issue to the responsible IT or security department.
It may still be possible to work around the problem using the legacy crypto-policy, but the more time passes, the less likely it will work: