The issue you're experiencing it due to the order of operations that Windows uses for the GPO and 802.1x processes. The certificate enrolment uses the GPO process, but the user 802.1x process kicks in before the user GPO so you run into this catch-22. The diagram below was pulled from an old Cisco document on 802.1x, but is still relevant. This is a common problem with using user auth with certificates.

There's not really an easy fix for this, but there are some options. I'm not sure if MAR will help as you don't really have a user credential to tie the 'was machine authenticated' attribute to (not sure if this will work with a subsequent MAB session).

Some options include:

1. Include an AuthZ Policy that uses CWA to allow users to leverage portal-based user authentication with their AD credentials. This could be the default rule or one above the default that uses profiler conditions based on AD probe or other attributes (hostname prefix match for SOE computers, etc). Train your users on the process to connect and possibly force the GPO update for the cert enrolment.
2. Create an AuthZ Policy that uses profiler conditions based on AD probe or other attributes alone. Restrict access to only what is required for AD login and GPO. This may not be ideal as you lose user visibility and can be difficult to implement with reasonable ACLs in a large distributed AD environment.
3. Use AnyConnect NAM to leverage separate auth methods for computer (EAP-TLS) and user (PEAP-MSCHAPv2) authentication. This is not currently possible with the Windows supplicant, but will be an option when EAP-TEAP is publicly available in Windows 10. Using MSCHAPv2 with the native supplicant, however, might require disabling Credential Guard in the domain policy. See this link regarding Credential Guard.

When you move forward from Monitor Mode, you will need to consider similar issues with the computer auth for PC builds. See this post for further suggestions.

PC Imaging on NAC secured ports