FIPSMode (authEncryption) Element

The FIPSMode (authEncryption) element indicates whether Federal Information Processing Standards (FIPS) mode is enabled. When a wireless connection is operating in FIPS mode, the security level of the connection complies with the FIPS 140-2 standard. For more information about FIPS, see the FIPS Home Page.

This element is optional. If this element is not specified in a profile, then FIPS mode is not enabled.

FIPSMode can be set to TRUE only when the following conditions are met:

  • The connectionType element has a value of ESS (that is, the connection is an infrastructure connection).
  • The authentication element has a value of WPA2 or WPA2PSK.
  • The encryption element has a value of AES.

Unlike most elements in the WLAN_profile schema, this element is in the namespace.

The value of the FIPSMode element is ignored if the miniport driver for the wireless interface does not support FIPS mode.

Windows XP with SP3 and Wireless LAN API for Windows XP with SP2: This element is not supported. If FIPSMode is present in a profile, the element is ignored.

<xs:element name="FIPSMode"

The element is defined by the authEncryption element.


This parameter can be set at the command line using the netsh wlan set profileparameter command. For more information, see Netsh Commands for Wireless Local Area Network (wlan).


To view a sample profile that uses the FIPSMode element, see FIPS Profile Sample.


Requirement Value
Minimum supported client
Windows Vista [desktop apps only]
Minimum supported server
Windows Server 2008 [desktop apps only]

See also

Definition context of element in schema


Possible immediate parent element in schema instance

authEncryption (security)