Hi,
You can leverage the MachineAccessRestriction feature. Look for the condition or attribute "was machine authenticated" that should let you know that a domain asset authenticated to the network. Also you can use anyconnect NAM or a group policy to set the domain issued workstations to use computer and user authentication.
Thanks,
Tarik Admani
*Please rate helpful posts*