Security Enhancements - LED for active connection and Authentication against central authority

Enjoying trying out our first TinyPilot.
There is great potential with a few changes.
I'm willing to do the work or collaborate.
I haven't dug into the device coding yet and don't really know what I can and can't change.

For broad adoption in our global org we would need :

1. Visible indicator that a remote user session is in progress.
   Pulling an LED of the pi would be sufficient.

2. Authentication against LDAP , Radius or some other central authentication engine
   This is really important. It is impossible to manage these boxes with local credentials.
   I am sure others have asked for this.