Hello Vo-0946,
If we understand this correctly, it seems like your issue is similar to the one noted in this stackoverflow article: https://stackoverflow.com/questions/64289883/mtls-using-azure-function-http-trigger.
It notes that Azure Function doesn't do any validation, but only forwards the certificate in a header and your app needs to do the validation. This documentation will be useful for your scenario: https://learn.microsoft.com/en-us/azure/app-service/app-service-web-configure-tls-mutual-auth#access-client-certificate
Thank you,
Susmitha