For the suspect clients you can confirm them via PowerShell
Test-ComputerSecureChannel
https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.management/test-computersecurechannel?view=powershell-5.1
--please don't forget to Accept as answer if the reply is helpful--