Ah, that is something you configure on the client and on the RADIUS server.
On the client, it is in the 802.1X authentication:
There under Advanced settings if you select Computer Authentication, the client will use the computer account to authenticate.
The RADIUS server should accept computer authentication (I think NPS doesn't by default), and if you only want computer authentication it should reject users during authentication.
There is nothing to configure on the AP.