[Technical Question] Authenticate to IoT Hub using Azure Identity Service with DPS and x509 certificates

[Studio5086]

Hello,

is there any way to get the SDK working with the azure identity service when using x509 certificates and a DPS for authentication? I tried using the aziot_keys engine, but I have not had any luck on getting this working. The furthest I've gotten is that the client.open works when using AMQP with privateKeyEngine: 'aziot_keys' and privateKeyIdentifier: keyHandle, but once I try to retrieve the twin I'm getting
AMQP condition : amqp:unauthorized-access
AMQP description: Unauthorized access

[Studio5086]

I have found a workaround to fix the incorrect passing of variables in the existing libraries:
We can monkeypatch the tls.connect function to inject a secureContext which contains "cert", "privateKeyEngine" and "privateKeyIdentifier". We create this context once at the beginning and load it if the tls.connect is not targeting the blob storage (because that uses SAS tokens instead of certificates).

Is there actually no safe way to make this work, because the libraries don't support it?