Hello, I have the same issue with TL-WA854RE v3.0 the device has simplistic UI which doesn't help with disabling TKIP(WPA). 

My main network is WPA2 only so essentially this device is MAKING MY NETWORK INSECURE. 

Please help me to find the detailed UI in this device otherwise I'll have to return.

Thank you

@root23 

I have same problem. Router is WPA2-AES but the TL-WA855RE only uses TKIP.

I have TL-WA855RE  version 4 with latest firmware. I write here to formally ask that you add WiFi security settings with the option to require WPA2-AES over TKIP.

My router is WPA2-AES but I can see no way to stop the TL-WA855RE being TKIP.

You may know that with iOS 14 such equipment is flagged as weak security, so you may get more demand for this now.

I have AC750 (RE200) v2 and it too has this issue. WPA2/AES is not listed as an available security protocol. My main router is using WPA2/AES.

I was alerted to this issue after upgrading my iPhone to iOS14 (see screenshot below).

@TomiS facing the same problem too after installed the ios 14. i was thinking the someone intercepted and changed my settings. After reset and upgraded the firmware, it was still there.  And now i know it is a general problem. We have been connecting the extender for a long time in a insecure way without any notices. TPLINK should patch this flaw inmmediately.

I have the same issue, this needs to get fixed/patched asap, it is compromising my all network.

@Solla-topee 

Hello, thanks for your answer, but i have the same problem on a RE450, the extended network is in WPA2-PSK (AES+TKIP) and my router in WPA2-PSK (AES), i can't put the extender in the same configuration and it's causing some trouble for WIFI Roaming on my MacBook in addition to lowering the security level.

Can you solve this problem ?

You said "Our Range Extenders use Auto securitiy mode by default, which supports WPA2+AES, and TKIP to be compatible with the devices that only support old encryption methods." and "But in fact, iOS devices would still prefer to the secure encryption method WPA2+AES, instead of TKIP when connecting to the range extenders, and users do not need to worry about the potential security issue."

Sorry for being a bit rude but it is a lack of knowledge of cybersecurity, an attacker can more easily bypass security with TKIP than with AES and if he "force the connection" by using an old endpoint he can attack and compromise the network by using this breach, there is no link with the fact that my computer is connected using AES instead of TKIP, it is the fact that the extender provide a TKIP connection for old devices which is the problem in fact. It's a security breach..

You have to let us choose the security we want to put, my router is on AES only it works perfectly with all my devices and it's more secure, i must be able to have AES only on my extender so as not to lower the security of my network and permit an easy WIFI Roaming.

If we can have an update for RE450 extender to permit to put only WPA2-PSK (AES) it would be a good thing :).

Thanks for your help