I have a customer in Thailand asking me for help with regard to a weird error message when he tries to login after his password retries have exceeded.
He was warned of account lockout prior to his max password retries count. This is what he expected. Good.
However, "Authentication failed" error message is shown when he really exceeded his max password retries count. He was expecting "Password retry limit exceeded". No Good.
I did a search in amAuthLDAP.properties:
#ExceedRetryLimit=Exceed password retry limit. Please try later.
That explains why. This is more for security/auditing purpose. These days, auditors advise customers not to reveal too much to end-users when they encounter login failure.