I assume you mean revoke their certificates?
No. You would need to script this as part of existing account termination workflows.
Also be aware that it's a general best practice to use authorization against an identity store during an EAP-TLS flow so that even though the certificate is still valid, they will be denied based on their AD properties (in this case, user not found or user disabled).