Why there is no 401 Unauthorized status code on login failed

Nextcloud version : 15
Operating system and version : Debian 9
Apache : 2.4.25-3
PHP version: 7.0.33

Hi, my question is simple, why when there is a fail logging on my nextcloud, there is no 401 header status in apache logs ?

The nextcloud anti brutforce works well, okay. But not having a 401 header prevents my HIDS from blocking the IP and getting me the information. Thank you for your help !