Bit harsh, it's not always a users fault, for example I know of an institution that didn't support TLS1.2 on their radius servers and thus devices with TLS1.0/1.1 disabled couldn't connect