My take is that the IPS is a security platform whereas the aWIPS is the MSE. You also have the built in WLC capabilities.
With the IPS you add a single controller in the mobility group as an IPS client. The aWIPS is more wireless centric with improved wireless defences.
With the native WLC WIDs you get 17 signature however there are a greater number with aWIPs also as it is centralised yu get a single report whereas if you have multiple controllers they can all report an event. ie allarm aggregation. The caims are lower false positives etc.
Also you get frensic and attack replay with aWIPs not sure about IPS.
I also make the assumption that as the IPS is a wired side device it is looking at wire only whereas the aWIPs will be better at etecting specific wireless events.
Indeed that was something I was not aware of until I read the guide.
I knew yu could create signatures however you can also be selective as to which signatures you actually use and trigger alarms.
The WIKI that comes with is for describing the triggers will also be a blessing to understand and take preventative ations to mitigate threats such as MFP with CCX5 clients etc. Unfortunately getting cx5 clients may not be as simple as it appears.
I have not focused on the wired IPS so I am not sure of its full scope of capabilities and perhaps we should look to the security community for that?
I must say I did not cover all of it just tried to pick the key areas, I will need to setup a test MSE environment as there is a great deal to cover