User login does not record the authentication source
When a user logs in, there is no indication if the user logged in locally or from a remote authentication source. Knowing the true source of a user login is important especially in the case of a remote login failing which triggers a fallback to a local database login.
Where feasible, we should add the authentication source to the GUI user login entry (e.g. login/logout logs, config backup metadata, firewall rule user edit entries, etc).