IIS hosted website is using IISClientCertificateMapping Authentication (MTLS).
Requirement is Allow a special user who could not provide any Client Certificates.
How such special user can access the website?
What if the only way to identify such user is by user's IP address.