Weak Security - Apple Support Communities

• Apple
• • Store
  • Mac
  • iPad
  • iPhone
  • Watch
  • Vision
  • AirPods
  • TV & Home
  • Entertainment
  • Accessories
  • Support
• 0+

Community Local Nav Open Menu Local Nav Close Menu

• Ask the Community
• Browse
• Search

Sign in

• Sign in
• Sign in corporate

Go back to my question iPad User profile for user: karenfrombarnstable karenfrombarnstable Author User level: Level 1 5 points Weak security

Many iOS devices in house but older iPad says weak security when logging onto internet

iPad, iPadOS 14

Posted on Sep 20, 2020 7:50 AM

Me too (60) Me too Me too (60) Me too Reply Question marked as Top-ranking reply User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Posted on Sep 30, 2020 4:29 AM

Is is possible that another security feature is causing this alert - in that, following update to iPadOS14.x, your devices are likely to be attempting to use the new Private Address security feature. Whist this feature is commendable and very useful for public networks, it can, in some circumstances, cause difficulties with your home network.

Without delving deeply at this stage into the many issues that you may see, I suggest that you disable this feature for your home WiFi network - as the protection it provides is largely irrelevant in your home network environment.

Private Addressing is enabled/disabled per network:

Settings > WiFi > [ Your WiFi Network Name / SSID] - tap the “i” icon - Private Address - set to OFF

View in context 15 replies

Loading page content

Page content loaded

Question marked as Top-ranking reply User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Sep 30, 2020 4:29 AM in response to nharasyn001

Is is possible that another security feature is causing this alert - in that, following update to iPadOS14.x, your devices are likely to be attempting to use the new Private Address security feature. Whist this feature is commendable and very useful for public networks, it can, in some circumstances, cause difficulties with your home network.

Without delving deeply at this stage into the many issues that you may see, I suggest that you disable this feature for your home WiFi network - as the protection it provides is largely irrelevant in your home network environment.

Private Addressing is enabled/disabled per network:

Settings > WiFi > [ Your WiFi Network Name / SSID] - tap the “i” icon - Private Address - set to OFF

Reply

Link

User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Oct 3, 2020 1:59 AM in response to nharasyn001

Given that the Router config’ has been demonstrated to be good - and you can connect without issue to the WiFi network segment that it provides; issues only occur when connecting via your Range Extender. As such, on the basis of this evidence, the only reasonable presumption is that either your Range Extender is not fully compliant with the required security standards, or something is awry with its hardware or its configuration.

I have taken some time to set-up and try to replicate your issue - by adding a network extender (in my case, an Apple Airport Express configured as network extender over WiFi) to extend my own network. Despite considerable effort, I cannot reproduce your issue; when roaming from the primary WiFi network segment provided by my router, to the extended segment provided by the Airport Express, I see no reported security issue or diminution of performance other than the expected reduction in network throughput.

This test adds considerable weight to the presumption that something isn’t performing as expected with your Range Extender.

Without being able to analyse your WiFi traffic with a network analyser, I am unable to offer an alternative explanation. As your TP Link devices don’t appear to be configurable to provide a wired-backhaul over ethernet, we can’t test its WiFi radio in any native modes to demonstrate full compliance.

Have you investigated the possibility of finding any firmware updates for your Range Extender?

Let’s not lose sight of the inescapable fact that your WiFi configuration is no less less secure than it was prior to your iOS/iPadOS14 update. The only significant change is that your iPad can now provide an informational alert as to the security settings of your network being less than ideal. Nothing is faulty - but you have an alert with which you have [justifiable] concern.

Reply

Link

User profile for user: Rapmusik Rapmusik User level: Level 1 8 points

Oct 2, 2020 10:01 PM in response to nharasyn001

nharasyn001, Same problem with my iPhone X. I feel pretty confident now that it is a bug with iOS 14, and specifically when it is connecting to a WiFi extender. I am connecting to a Netgear Powerline adapter, which uses an ethernet line coming from the main router, then giving off its own different WiFi SSID and password. I have checked the settings of both routers, they're both using WPA2-PSK (AES), and the firmware is up to date. If I connect to the main WiFi SSID, it does not show "Weak Security". It's only when I connect to the extended WiFi SSID that I see the "Weak Security" notice. Other iPhones in the house that are not on iOS 14 do not show "Weak Security" when connected to the same extended WiFi SSID.

Reply

Link

User profile for user: Rapmusik Rapmusik User level: Level 1 8 points

Oct 3, 2020 7:38 AM in response to LotusPilot

Oh boy, smh. This was my bad. It's not a bug with iOS. I thought had already done this, but apparently I didn't. Turns out I did not create a new, random private encryption key on the WiFi extender. Just pushed the security buttons on those babies and boom, no more "Weak Security" notice on iPhone X with iOS 14.0.1. Sorry to everyone and Apple for jumping the gun! Glad I figured it out, though, and perhaps it'll help someone else.

Reply

Link

User profile for user: markwmsn markwmsn User level: Level 6 16,715 points

Sep 24, 2020 10:48 PM in response to karenfrombarnstable

Does the iPad say it, or does some website say it? Can you show us a screen capture of the message?

It may be that one iPad is so much older that it does not support modern security measures. Some website might detect that and display a message about it.

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Sep 30, 2020 5:33 AM in response to LotusPilot

Whatever issue has arisen as a result of 14.0.1, software developers should be aware of the ramifications of their releases. As far as my example is concerned, TP-Link users of Range Extenders (brand new versions) are now questioning their suppliers regardeing product performance. As you are aware, a gigabit Ethernet port turns the extender into a wireless bridge, and nothing more. The subject model of this discussion provides for an expanded 450Mbps on 2.4GHz + 1300Mbps on 5GHz totals 1750Mbps Wi-Fi speeds, it does not interfer with the encryption in any way. What goes in, in the way of Wi-Fi Protected Setup, comes out the same. Conclusion, the OS iPhone version (14.0.1) software is translating something that is causing AC1750 Wi-Fi Range Extenders to display 'weak security' messages on the iPhone when it is not.

.

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Sep 30, 2020 4:04 AM in response to LotusPilot

My WIFi Router is 6 months old, it is the current British Telecom Smart Hub and configured for WPA2. The signal is cleared as OK by the latest iPhone version (14.0.1)  software. There is no 'weak security' message showing on my iPhone XS. The 'weak signal' appears when that signal is purely extended by a TP Link, also just 6 months old. The TP Link Extender (RE450) passes the WIFI from the BT Hub directly without changing the security protocol. The iPhone version (14.0.1) software however shows that received signal as 'weak security' when it has received the WPA2 encrypted signal. This does raise a question over the iPhone version (14.0.1) software.

Reply

Link

User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Oct 3, 2020 2:35 AM in response to nharasyn001

You are quite correct, my point exactly. I can’t replicate your problem despite having duplicated a network that functionally reflects what you have.

Anyhow, this has substantially hijacked someone else’s thread - whose problem may not reflect your own. I’ve spent many hours attempting to assist you, without success. Sorry, I tried.

On the basis of evidence presented by yourself and that of your last screenshot, your Range Extender manufacturer is aware of the problem. You may need to wait for them to identify and resolve the problem.

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Oct 3, 2020 1:44 AM in response to Rapmusik

I have confirmation from T Link that their extender passes on encrypted signal without interruption. This is definitely an OS 14 issue. I am confident that my security is not ‘weak’ as claimed.

Reply

Link

User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Oct 3, 2020 10:45 AM in response to Rapmusik

So your problem is now fully resolved - having confirmed my diagnosis of incorrect configuration of the WiFi Extender?

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Oct 3, 2020 12:24 PM in response to LotusPilot

This is not about incorrect configuration of the TP Link extension. For some reason the OS software now sees what has always existed as compliant now not compliant.

Reply

Link

User profile for user: Jeff_W. Jeff_W. User level: Community Specialist

Sep 24, 2020 5:26 PM in response to karenfrombarnstable

Hi karenfrombarnstable!

It sounds like you’re concerned about internet security at your home, and we're happy to help. You can check out these suggestions for configuring your router for the best possible security:

Recommended settings for Wi-Fi routers and access points

Cheers!

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Sep 30, 2020 3:42 AM in response to karenfrombarnstable

I do not get this message via my BT Smart Hub but I do via a TP Link RE450 Extender. The 'weak security' message displayed when the RE450 Extender is utilised only occurs on iPhone Software version 14.0.1. On earlier models of iPhone and iPad (I have both), the software versions do not display the same 'weak security ' message. Surely, if the BT Smart Hub utilises WPA2 encryption that is accepted by the latest iPhone version (14.0.1) software (no 'weak security) message, then that encryption protocol from the BT Hub is being extended through my RE450. In that case, it is an OS problem created by the latest iPhone software release. Problem is, the message suggests it is the WIFI extension hardware that is at fault. You will no doubt be aware of the growing questions being raised on the net which seem to point to TP Link and others as the 'weak security' provider. I am now satisfied that the encryption protocol has not changed and that my Extender is indeed passing on the WPA2 protocol to my iPhone. I accept no personal responsibilty for this disclosure. It is my judgement for assistance only.

Reply

Link

User profile for user: LotusPilot LotusPilot User level: Level 10 302,078 points

Sep 30, 2020 3:50 AM in response to karenfrombarnstable

Your iPad is no less secure today than it was prior to the update to iPadOS14. However, your iPad is now better able to [warn] bring to your attention security deficiencies of your WiFi network and iPad settings.

This support page will describe the more secure (recommended) settings for WiFi:

Recommended settings for Wi-Fi routers and access points – Apple Support

It is possible that your WiFi Router is too old to be (or not capable of being) configured for more secure settings. As such, you can either configure the most secure settings that your Router will support - or replace your Router with something more advanced that provides better security configuration options. 

Whilst WPA3 is the newest standard, you should aim to use WPA2 as a minimum.

Reply

Link

User profile for user: nharasyn001 nharasyn001 User level: Level 1 4 points

Oct 3, 2020 2:26 AM in response to LotusPilot

You are not replicating the problem This is a screen shot from TP Link.

Reply

Link

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

• Go to page of 1

Weak security

Welcome to Apple Support Community A forum where Apple customers help each other with their products. Get started with your Apple Account. Learn more Sign up Ask a question Reset