In general, without a detailed description, it is difficult to offer something sensible, but offhand - why can't guests also use the access_token + reserved guest client_id?

It seems to me that the specification does not stipulate that client_id is the type or class of the application (mobile or your server). But it is explicitly said that the client_id is issued by the server to the client. Therefore, nothing prevents you from having a client_class_id in the first request to get a client_id and, if necessary, a client_secret. client_class_id will just indicate that this is a mobile application.
In addition, the content of the paragraph tools.ietf.org/html/rfc6749#section-2.3.1 just resembles the previously known and familiar login:password scheme.
As a result, each user immediately receives his own client_id, which, by the way, will then be transmitted with all other requests according to the specification.
Example:
client sends
POST xxx/oauth/credentials
in the body client_class_id=12sdfs31sdfsd23&other identifiers&any models&types and related information
gets client_id=cid and client_secret.
further, if the client needs to log in, then he sends
POST xxx/login?response_type=code&redirect_uri=yyy ://zzz&client_id=cid
in the login=vasya&password=123 body.
If he is a guest, then he sends something else.
receives HTTP/1.1 302 Found
Location: yyy://zzz?code=vasya_code
then requests POST xxx/oauth/token with grant_type=authorization_code&code=vasya_code&redirect_uri=yyy://zzz as usual.