I think I found why fail2ban is not banning failed GUI logins…
Checking the contents of /var/log/httpd/error_log shows NO failed logins at all (using either http or https).
Isn’t this the logfile that should register the failed attempts so they can be picked up from fail2ban???