Evaluating client certificates for backup of a fleet of servers


I am using Kopia for a personal use, but I am wondering about using it in my work settings.
Suppose that you have a fleet (several dozens) of Windows servers (WS), and want to use a central Kopia Repository Server (KRS)

As the WS have X.509 certificates, would it be possible to use these certs to authenticate them to the KRS. Would it be possible to put a reverse proxy (RP such as Caddy) to authenticate the WS clients and pass their identity to KRS via a http header ?

PS : perhaps this use case is outside the scope of Kopia. In any case, thank you for this wonderfull FOSS project.