To my knowledge, WIPS(wireless intrusion prevention system) prevents wireless devices connecting to unauthorized AP by sending de-authentication frames.
If 802.11w Protected Management Frame(PMF) is used, the de-auth frames received by device are discarded as invalid frames, so that a device can bypass the WIPS to connect rogue AP.
But today, I read an article that some of the latest WIPS can prevent such cases even though they use PMF or WPA3.
How can it be possible?