I need to archive below with vault

I want all users those want to get secrets and database credentials they need to create x509 certificate from there machine and then we will add those certificates in vault and when they need access they need to send that certificate in request then that certificate will be authorized in vault then only they will get the secrets it’s not like just certificate even if jwt token can also we can consider

Are you looking for the TLS auth method?