You will need to check what kind of logon type is being produced, it will appear in the Events details. In the article below you can find the table per logon types and what are they referred to. For example, the user logon in the computer will the the Type 2, or Interative Logon, while other common logon types are 3 - for authenticating logon to network resources, or Type 5 - for services that are authenticating while running.
Hope this helps with your query,
--If the reply is helpful, please Upvote and Accept as answer--