I'm setting up greenfield VIA VPN for our users, to replace aging Cisco ASA IPSEC and AnyConnect VPNs. Is there a way to profile the endpoint client when it connects to determine if it is a trusted corporate laptop or just a personal device belonging to a user? We have AirWatch integration but is there a way to get the MAC address info from the VIA client? For context I'm using EAP-PEAP with MSCHAPv2 authentication for VPN.