It would be nice to add an attribute to users that marks if the user has access to the admin panel. This attribute could be used in elastic to detect unusual Admin behavior. Also it could be used for increased security in Portal Access rules to force users with Admin access to always use MFA.