Topic Last Modified: 2013-02-21

Returns information about the Federal Information Processing Standards (FIPS) configuration settings currently in use in the organization. The FIPS standards are a set of United States government security standards required for use in computers maintained by non-military government agencies and by government contractors. This cmdlet was introduced in Lync Server 2013.


Get-CsFIPSConfiguration [-Identity <XdsIdentity>] <COMMON PARAMETERS>
Get-CsFIPSConfiguration [-Filter <String>] <COMMON PARAMETERS>
COMMON PARAMETERS: [-LocalStore <SwitchParameter>] [-Tenant <Guid>]


Example 1

The command shown in Example 1 returns information for all the FIPS configuration settings currently in use in the organization. Note that there is only a single, global instance of FIPS configuration settings.

Copy Code

Detailed Description

The Federal Information Processing Standards (FIPS) are a series of standards and guidelines used by computers engaged in work for the US government; for example, there are FIPS standards that govern the use of such things as cryptography, encryption, and digital signatures. (See for more information.) Lync Server 2013 provides an option that enables the software to use only algorithms that meet the FIPS standards. If you need to work with the United States government (or with other entities that follow FIPS) then you can enable FIPS compliance in Lync Server 2013.

Keep in mind, however, that, for the on-premises version of Lync Server, you have only a single, global collection of FIPS configuration settings: FIPS compliance can only be enabled or disabled for your entire Lync Server implementation. You cannot selectively enable or disable FIPS compliance on, say, an individual site or an individual Registrar pool. If you do enable FIPS compliance, you could potentially encounter problems when trying to communicate with organizations that do not fully adhere to the FIPS standards.

By default, FIPS compliance is disabled in Lync Server 2013.

To return a list of all the role-based access control (RBAC) roles this cmdlet has been assigned to (including any custom RBAC roles you have created yourself), run the following command from the Windows PowerShell command-line interface prompt:

Get-CsAdminRole | Where-Object {$_.Cmdlets –match "Get-CsFIPSConfiguration"}

Lync Server Control Panel: The functions carried out by the Get-CsFIPSConfiguration cmdlet are not available in the Lync Server Control Panel.


Parameter Required Type Description




Enables you to use wildcard values when referencing a collection of FIPS configuration settings. Because you can only have a single, global instance of these settings there is no reason to use the Filter parameter. However, if you prefer you can use the following syntax to reference the global settings:

-Filter "g*"

That syntax brings back all the FIPS configuration settings that have an Identity that begins with the letter "g".




Unique Identity of the FIPS configuration settings. Because you can only have a single, global instance of these settings, you do not need to specify an Identity when calling the Get-CsFIPSConfiguration cmdlet. If you prefer, however, you can use the following syntax to reference the global settings:

-Identity global




Retrieves the FIPS configuration data from the local replica of the Central Management store rather than from the Central Management store itself.




Globally unique identifier (GUID) of the Lync Online tenant account whose FIPS configuration settings are to be retrieved.

For example:

–Tenant "38aad667-af54-4397-aaa7-e94c79ec2308"

You can return the tenant ID for each of your tenants by running this command:

Get-CsTenant | Select-Object DisplayName, TenantID

Input Types

None. The Get-CsFIPSConfiguration cmdlet does not accept pipelined input.

Return Types

The Get-CsFIPSConfiguration cmdlet returns instances of the Microsoft.Rtc.Management.WritableConfig.Settings.FIPSConfiguration.FIPSConfiguration object.

See Also