[keycloak-user] Authentication via client certificate

Dear all, I've a hopefully short question regarding authentication in Keycloak. Is there an already built in mechanism to authenticate against Keycloak via client certificate? If yes, how can I configure it? Are there any examples in the showcase regarding client certificates? If no, how can I implement and configure it? - I guess implementing the Authentication SPI and register it in Keycloak as an alternative flow? Best regards, Christian