Do you see CAPI ? in Image.png ?

See Remote Access VPN R81.10 Administration Guide p. 46, 56, 59. I am using CP RA VPN client with a certificate stored in Mac OS KeyChain, what in detail are you trying ?

A okay, 
but my case is different I need load certificate from smartcard(PKI) and I am not sure if it possible download cert from it I think not.
I need put card into reader and after for me will be possible connect into VPN whis just ask on pincode and thats it.
This way working for windows but not for Mac M1.

If the SmartCard is mounted, Site created and certificate from SmartCard is selected for authorization, it will work this way. 

yes its working now, i am sorry ,again issue was between monitor and chair.