@ShashankSaxena-2458 Thank you for reaching out to us, As I understand you want to implement Conditional Access Policy for users using Certificate Based Authentication.
You can achieve this using authentication strength, though we have built-in authentication strengths however you can create a custom authentication strength - https://video2.skills-academy.com/en-us/entra/identity/authentication/concept-authentication-strengths#:~:text=policyType%20eq%20%27builtIn%27-,Custom%20authentication%20strengths,-In%20addition%20to use the same in the Grant controls section of conditional access policy.
Refer to this https://hmaslowski.com/f/azure-ad-certificate-based-authentication-cba-in-public-preview where similar requirement has been deployed.
Also, make sure you test this with pilot users/report only mode, before setting up in production.
Let me know if you have any further questions, feel free to post back.
Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.