Device authentication, common method

The question is what are the standard device authentication methods, in the following cases:

  • the desktop is authenticated on the web service
  • I provide the .exe on the desktop

  • I control the web service

  • desktop may have a TPM chip installed

Do I need to get the device identifier on the desktop, then sign it with TPM and send it to the web service? What is the standard method?