Yes, Jamf is an MDM provider. Depending on how many Apple devices you have you can either look at Jamf Pro or Jamf Now. If you're in the education sector they also have Jamf School. Go to their main website and fill out a contact form if you're interested in any of them.
In Profile Creator you're looking for EAP Setup Modes in the Wifi Payload section. Also ensure the certificate is in the same profile otherwise it won't work.
Then it most likely can't connect without a user logged in. Check that the certificate is loaded into the system keychain and not anywhere else i.e. login keychain.
I suspect it's due to the lack of MDM management as a support article dated in 2018 mentions MDM, but doesn't explicitly state it's necessity.