[2024] Pass 220-1102 Exam - Real Questions and Answers
220-1102 Exam Questions Get Updated [2024] with Correct Answers
CompTIA A+ Certification Exam: Core 2 (220-1102) is the second of two exams that candidates must pass to obtain the CompTIA A+ certification. The first exam, the 220-1001, focuses on hardware, networking, mobile devices, and virtualization. The 220-1102 exam focuses on operating systems, security, software troubleshooting, and operational procedures. Both exams are designed to test the candidate's knowledge and skills in the areas of IT support and technical troubleshooting.
NEW QUESTION # 12
A user calls the help desk to report that Windows installed updates on a laptop and rebooted overnight. When the laptop started up again, the touchpad was no longer working. The technician thinks the software that controls the touchpad might be the issue. Which of the following tools should the technician use to make adjustments?
- A. gpedic.msc
- B. devmgmt.msc
- C. eventvwr.msc
- D. perfmon.msc
Answer: B
Explanation:
Explanation
The technician should use devmgmt.msc tool to make adjustments for the touchpad issue after Windows installed updates on a laptop. Devmgmt.msc is a command that opens the Device Manager, which is a utility that allows users to view and manage the hardware devices and drivers installed on a computer. The technician can use the Device Manager to check the status, properties and compatibility of the touchpad device and its driver, and perform actions such as updating, uninstalling or reinstalling the driver, enabling or disabling the device, or scanning for hardware changes. Eventvwr.msc is a command that opens the Event Viewer, which is a utility that allows users to view and monitor the system logs and events. The Event Viewer may provide some information or clues about the touchpad issue, but it does not allow users to manage or troubleshoot the device or its driver directly. Perfmon.msc is a command that opens the Performance Monitor, which is a utility that allows users to measure and analyze the performance of the system
NEW QUESTION # 13
A user tries to access commonly used web pages but is redirected to unexpected websites.
Clearing the web browser cache does not resolve the issue. Which of the following should a technician investigate NEXT to resolve the issue?
- A. Enable firewall ACLs.
- B. Update the antivirus definitions.
- C. Verify the routing tables.
- D. Examine the localhost file entries.
Answer: D
Explanation:
A possible cause of the user being redirected to unexpected websites is that the localhost file entries have been modified by malware or hackers to point to malicious or unwanted websites. The localhost file is a text file that maps hostnames to IP addresses and can override DNS settings. By examining the localhost file entries, a technician can identify and remove any suspicious or unauthorized entries that may cause the redirection issue.
Enabling firewall ACLs may not resolve the issue if the firewall rules do not block the malicious or unwanted websites. Verifying the routing tables may not resolve the issue if the routing configuration is correct and does not affect the web traffic. Updating the antivirus definitions may help prevent future infections but may not remove the existing malware or changes to the localhost file. References: CompTIA A+ Core 2 (220-1002) Certification Exam Objectives Version 4.0, Domain 1.3
NEW QUESTION # 14
A company-owned mobile device is displaying a high number of ads, receiving data-usage limit notifications, and experiencing slow response. After checking the device, a technician notices the device has been jailbroken. Which of the following should the technician do next?
- A. Restore the defaults and reimage the corporate OS.
- B. Undo the jailbreak and enable an antivirus.
- C. Back up the files and do a system restore.
- D. Run an antivirus and enable encryption.
Answer: A
Explanation:
The best course of action for the technician is to restore the defaults and reimage the corporate OS on the device. This will remove the jailbreak and any unauthorized or malicious apps that may have been installed on the device, as well as restore the security features and policies that the company has set for its devices. This will also ensure that the device can receive the latest updates and patches from the manufacturer and the company, and prevent any data leakage or compromise from the device.
Jailbreaking is a process of bypassing the built-in security features of a device to install software other than what the manufacturer has made available for that device1. Jailbreaking allows the device owner to gain full access to the root of the operating system and access all the features1. However, jailbreaking also exposes the device to various risks, such as:
* The loss of warranty from the device manufacturers2.
* Inability to update software until a jailbroken version becomes available2.
* Increased security vulnerabilities32.
* Decreased battery life2.
* Increased volatility of the device2.
Some of the signs of a jailbroken device are:
* A high number of ads, which may indicate the presence of adware or spyware on the device3.
* Receiving data-usage limit notifications, which may indicate the device is sending or receiving data in the background without the user's knowledge or consent3.
* Experiencing slow response, which may indicate the device is running unauthorized or malicious apps that consume resources or interfere with the normal functioning of the device3.
* Finding apps or icons that the user did not install or recognize, such as Cydia, which is a storefront for jailbroken iOS devices1.
The other options are not sufficient or appropriate for dealing with a jailbroken device. Running an antivirus and enabling encryption may not detect or remove all the threats or vulnerabilities that the jailbreak has introduced, and may not restore the device to its original state or functionality. Backing up the files and doing a system restore may not erase the jailbreak or the unauthorized apps, and may also backup the infected or compromised files. Undoing the jailbreak and enabling an antivirus may not be possible or effective, as the jailbreak may prevent the device from updating or installing security software, and may also leave traces of the jailbreak or the unauthorized apps on the device.
References:
* CompTIA A+ Certification Exam Core 2 Objectives4
* CompTIA A+ Core 2 (220-1102) Certification Study Guide5
* What is Jailbreaking & Is it safe? - Kaspersky1
* Is Jailbreaking Safe? The ethics, risks and rewards involved - Comparitech3
* Jailbreaking : Security risks and moving past them2
NEW QUESTION # 15
A bank would like to enhance building security in order to prevent vehicles from driving into the building while also maintaining easy access for customers. Which of the following BEST addresses this need?
- A. Access control vestibule
- B. Guards
- C. Motion sensors
- D. Bollards
Answer: D
NEW QUESTION # 16
Which of the following would MOST likely be deployed to enhance physical security for a building? (Select TWO).
- A. Badge reader
- B. Personal identification number
- C. Motion sensor
- D. Soft token
- E. Multifactor authentication
- F. Firewall
Answer: A,C
Explanation:
Badge reader and motion sensor are devices that can be deployed to enhance physical security for a building. A badge reader is a device that scans and verifies an identification card or tag that grants access to authorized personnel only. A badge reader can help prevent unauthorized entry or intrusion into a building or a restricted area. A motion sensor is a device that detects movement and triggers an alarm or an action when motion is detected. A motion sensor can help deter or alert potential intruders or trespassers in a building or an area. Multifactor authentication is a method of verifying identity using two or more factors, such as something you know, something you have or something you are. Multifactor authentication is not a device that can be deployed to enhance physical security for a building but a technique that can be used to enhance logical security for systems or services. Personal identification number is a numeric code that can be used as part of authentication or access control. Personal identification number is not a device that can be deployed to enhance physical security for a building but an example of something you know factor in multifactor authentication. Firewall is a device or software that filters network traffic based on rules and policies. Firewall is not a device that can be deployed to enhance physical security for a building but a device that can be used to enhance network security for systems or services. Soft token is an application or software that generates one-time passwords or codes for authentication purposes. Soft token is not a device that can be deployed to enhance physical security for a building but an example of something you have factor in multifactor authentication. Reference: CompTIA A+ Core 2 (220-1002) Certification Exam Objectives Version 4.0, Domain 3.3
NEW QUESTION # 17
A technician is setting up a newly built computer. Which of the following is the fastest way for the technician to install Windows 10?
- A. In-place upgrade
- B. Factory reset
- C. Unattended installation
- D. System Restore
Answer: C
Explanation:
Windows 10
The correct answer is D. Unattended installation. An unattended installation is a way of installing Windows 10 without requiring any user input or interaction. It uses a configuration file called answer file that contains the settings and preferences for the installation, such as the product key, language, partition, and network settings.
An unattended installation can be performed by using a bootable USB flash drive or DVD that contains the Windows 10 installation files and the answer file1. This is the fastest way for the technician to install Windows 10 on a newly built computer, as it automates the whole process and saves time.
A factory reset is a way of restoring a computer to its original state by deleting all the data and applications and reinstalling the operating system. A factory reset can be performed by using the recovery partition or media that came with the computer, or by using the Reset this PC option in Windows 10 settings2. A factory reset is not a way of installing Windows 10 on a newly built computer, as it requires an existing operating system to be present.
A system restore is a way of undoing changes to a computer's system files and settings by using a restore point that was created earlier. A system restore can be performed by using the System Restore option in Windows
10 settings or by using the Advanced Startup Options menu3. A system restore is not a way of installing Windows 10 on a newly built computer, as it requires an existing operating system and restore points to be present.
An in-place upgrade is a way of upgrading an existing operating system to a newer version without losing any data or applications. An in-place upgrade can be performed by using the Windows 10 Media Creation Tool or by running the Setup.exe file from the Windows 10 installation media. An in-place upgrade is not a way of installing Windows 10 on a newly built computer, as it requires an existing operating system to be present.
NEW QUESTION # 18
A technician wants to mitigate unauthorized data access if a computer is lost or stolen. Which of the following features should the technician enable?
- A. BitLocker
- B. Static IP
- C. Network share
- D. Group Policy
Answer: A
Explanation:
BitLocker is a Windows security feature that provides encryption for entire volumes, addressing the threats of data theft or exposure from lost, stolen, or inappropriately decommissioned devices1. BitLocker helps mitigate unauthorized data access by enhancing file and system protections, rendering data inaccessible when BitLocker-protected devices are decommissioned or recycled1. Network share, Group Policy, and Static IP are not features that can prevent unauthorized data access if a computer is lost or stolen.
References:
* BitLocker overview - Windows Security | Microsoft Learn1
* The Official CompTIA A+ Core 2 Study Guide2, page 315.
NEW QUESTION # 19
Which of the following is used as a password manager in the macOS?
- A. Privacy
- B. FileVault
- C. Terminal
- D. Keychain
Answer: D
Explanation:
Explanation
Keychain is a feature of macOS that securely stores passwords, account numbers, and other confidential information for your Mac, apps, servers, and websites1. You can use the Keychain Access app on your Mac to view and manage your keychains and the items stored in them1. Keychain can also sync your passwords and other secure information across your devices using iCloud Keychain1. Keychain can be used as a password manager in macOS to help you keep track of and protect your passwords.
References: 1: Manage passwords using keychains on Mac
(https://support.apple.com/guide/mac-help/use-keychains-to-store-passwords-mchlf375f392/mac)
NEW QUESTION # 20
A technician is an administrator on a messaging application for a private work group of mixed departments.
One of the technician's colleagues discloses to the group that their employer recently suffered a major security breach and shared details about the breach to the group Which of the following should the technician do first7
- A. Contact the supervisor and report the colleague with screen shots of the messages
- B. Ignore the messages as all of the group members work for the same employer.
- C. Remove the colleague from the group and ask members to delete the messages.
- D. Message the colleague privately and ask the colleague to delete the messages immediately.
Answer: A
Explanation:
In the case of a security breach disclosure, it's crucial to follow proper protocol to handle sensitive information responsibly:
* Ignore the messages: Not appropriate as it disregards the potential impact and severity of the breach.
* Remove the colleague and ask members to delete the messages: While it might limit the spread of the information, it doesn't address the breach reporting requirement.
* Message the colleague privately: Might help in immediate removal of messages but does not follow the proper chain of command and reporting protocols.
* Contact the supervisor: The correct action, as it ensures that the incident is handled by higher authorities who can take appropriate measures. Reporting with screenshots ensures that there is evidence of the disclosure.
Reference: CompTIA A+ Exam Objectives [220-1102] - 2.7: Given a scenario, use proper communication techniques and professionalism.
NEW QUESTION # 21
A technician is troubleshooting boot times for a user. The technician attempts to use MSConfig to see which programs are starting with the OS but receives a message that it can no longer be used to view startup items.
Which of the following programs can the technician use to view startup items?
- A. msinfo32
- B. taskmgr
- C. perfmon
- D. regedit
Answer: B
Explanation:
Explanation
When troubleshooting boot times for a user, a technician may want to check which programs are starting with the operating system to identify any that may be slowing down the boot process. MSConfig is a tool that can be used to view startup items on a Windows system, but it may not always be available or functional.
In this scenario, the technician receives a message that MSConfig cannot be used to view startup items. As an alternative, the technician can use Task Manager (taskmgr), which can also display the programs that run at startup. To access the list of startup items in Task Manager, the technician can follow these steps:
Open Task Manager by pressing Ctrl+Shift+Esc.
Click the "Startup" tab.
The list of programs that run at startup will be displayed.
NEW QUESTION # 22
Multiple users are reporting audio issues as well as performance issues after downloading unauthorized software. You have been dispatched to identify and resolve any issues on the network using best practice procedures.
INSTRUCTIONS
Quarantine and configure the appropriate device(s) so that the users' audio issues are resolved using best practice procedures.
Multiple devices may be selected for quarantine.
Click on a host or server to configure services.





Answer:
Explanation:
See the Explanation for the solution.
Explanation:
Host 2 and Media Server put them to Quarantine.
NEW QUESTION # 23
An employee has been using the same password for multiple applications and websites for the past several years. Which of the following would be best to prevent security issues?
- A. Updating antivirus definitions
- B. Configuring firewall settings
- C. Implementing expiration policies
- D. Defining complexity requirements
Answer: C
Explanation:
To prevent security issues related to an employee using the same password for multiple applications and websites, implementing expiration policies (B) is best. Password expiration policies require users to change their passwords at regular intervals, which helps to mitigate the risks associated with password reuse.
Regularly changing passwords reduces the chances of unauthorized access from compromised credentials.
NEW QUESTION # 24
An administrator has received approval for a change request for an upcoming server deployment. Which of the following steps should be completed NEXT?
- A. Verify end user acceptance
- B. Perform a risk analysis.
- C. Implement the deployment.
- D. Document the lessons learned.
Answer: B
Explanation:
Explanation
Before making any changes to the system, it is important to assess the risks associated with the change and determine whether it is worth implementing. Risk analysis involves identifying potential risks, assessing their likelihood and impact, and determining what steps can be taken to mitigate them. It is important to perform this step before making any changes, as this allows the administrator to make an informed decision about whether or not the change should be implemented. Once the risks have been assessed and the administrator has decided to go ahead with the change, the next step is to implement the deployment.
NEW QUESTION # 25
A customer reported that a home PC with Windows 10 installed in the default configuration is having issues loading applications after a reboot occurred in the middle of the night. Which of the following is the FIRST step in troubleshooting?
- A. Run both CPU and memory tests to ensure that all hardware functionality is normal
- B. Check for any installed patches and roll them back one at a time until the issue is resolved
- C. Install alternate open-source software in place of the applications with issues
- D. Reformat the hard drive, and then reinstall the newest Windows 10 release and all applications.
Answer: B
NEW QUESTION # 26
Which of the following should be used to control security settings on an Android phone in a domain environment?
- A. MFA
- B. ACL
- C. SMS
- D. MDM
Answer: D
Explanation:
Explanation
The best answer to control security settings on an Android phone in a domain environment is to use "Mobile Device Management (MDM)". MDM is a type of software that is used to manage and secure mobile devices such as smartphones and tablets. MDM can be used to enforce security policies, configure settings, and remotely wipe data from devices. In a domain environment, MDM can be used to manage Android phones and enforce security policies such as password requirements, encryption, and remote wipe capabilities12
NEW QUESTION # 27
A systems administrator is troubleshooting network performance issues in a large corporate office. The end users report that traffic to certain internal environments is not stable and often drops. Which of the following command-line tools can provide the most detailed information for investigating the issue further?
- A. ipconfig
- B. nslookup
- C. arp
- D. pathping
Answer: D
Explanation:
Pathping is the best command-line tool to provide the most detailed information for investigating the network performance issue further. Pathping is a utility that combines the functions of ping and tracert, which are two other command-line tools that test network connectivity and latency. Pathping sends packets to each router on the path to a destination and then computes results based on the packets returned from each hop. Pathping can show the route taken by the packets, the number of hops, the latency of each hop, and the packet loss percentage. This information can help the systemsadministrator identify where the network problem occurs and how severe it is. Ipconfig, arp, and nslookup are not as useful as pathping for this task. Ipconfig shows the configuration of the network interface card, such as IP address, subnet mask, and default gateway. Arp shows the mapping of IP addresses to MAC addresses in the local network. Nslookup queries DNS servers for domain name resolution. References:
Official CompTIA learning resources CompTIA A+ Core 1 and Core 2, page 21 CompTIA A+ Core 1 (220-1101) and Core 2 (220-1102) Cert Guide, page 457
NEW QUESTION # 28
A Windows user recently replaced a computer The user can access the public internet on the computer; however, an internal site at https7/companyintranet.com:8888 is no longer loading. Which of the following should a technician adjust to resolve the issue?
- A. IP address settings
- B. DHCP settings
- C. Antivirus settings
- D. Firewall settings
- E. Default gateway settings
Answer: D
Explanation:
The technician should adjust the firewall settings to resolve the issue of not being able to access an internal site at https://companyintranet.com:8888. The firewall settings control how the firewall filters and allows network traffic based on rules and policies. The firewall settings may be blocking or preventing the access to the internal site by mistake or by default, especially if the site uses a non-standard port number such as 8888. The technician should check and modify the firewall settings to allow the access to the internal site or its port number. Default gateway settings determine how a computer connects to other networks or the internet. Default gateway settings are not likely to cause the issue of not being able to access an internal site if the user can access the public internet. DHCP settings determine how a computer obtains its IP address and other network configuration parameters automatically from a DHCP server. DHCP settings are not likely to cause the issue of not being able to access an internal site if the user can access other network resources. IP address settings determine how a computer identifies itself and communicates with other devices on a network. IP address settings are not likely to cause the issue of not being able to access an internal site if the user can access other network resources. Antivirus settings control how the antivirus software scans and protects the computer from malware and threats. Antivirus settings are less likely to cause the issue of not being able to access an internal site than firewall settings, unless the antivirus software has its own firewall feature that may interfere with the network traffic. Reference: CompTIA A+ Core 2 (220-1002) Certification Exam Objectives Version 4.0, Domain 1.6
NEW QUESTION # 29
A user reports a PC is running slowly. The technician suspects it has a badly fragmented hard drive. Which of the following tools should the technician use?
- A. msconfig.extf
- B. dfrgui exe
- C. msmfo32.exe
- D. resmon exe
Answer: B
Explanation:
The technician should use dfrgui.exe to defragment the hard drive1
NEW QUESTION # 30
A user lost a company tablet that was used for customer intake at a doctor's office. Which of the following actions would BEST protect against unauthorized access of the data?
- A. Performing a remote wipe on the device
- B. Changing the office's Wi-Fi SSID and password
- C. Enabling remote drive encryption
- D. Changing the user's password
Answer: A
Explanation:
The best action to protect against unauthorized access of the data on the lost company tablet is to perform a remote wipe on the device. A remote wipe is a feature that allows an administrator or a user to erase all the data and settings on a device remotely, usually through a web portal or an email command. A remote wipe can help prevent the data from being accessed or compromised by anyone who finds or steals the device.
Changing the office's Wi-Fi SSID and password may prevent the device from connecting to the office network but may not prevent the data from being accessed locally or through other networks. Changing the user's password may prevent the device from logging in to the user's account but may not prevent the data from being accessed by other means or accounts. Enabling remote drive encryption may protect the data from being read by unauthorized parties but may not be possible if the device is already lost or turned off.
References: CompTIA A+ Core 2 (220-1002) Certification Exam Objectives Version 4.0, Domain 3.1
NEW QUESTION # 31
Which of the following wireless security features can be enabled lo allow a user to use login credentials to attach lo available corporate SSIDs?
- A. WPA2/AES
- B. TACACS+
- C. Kerberos
- D. Preshared key
Answer: A
Explanation:
WPA2/AES (Wi-Fi Protected Access 2/Advanced Encryption Standard) is a wireless security standard that supports enterprise mode, which allows a user to use login credentials (username and password) to authenticate to available corporate SSIDs (service set identifiers). TACACS+ (Terminal Access Controller Access-Control System Plus) and Kerberos are network authentication protocols, but they are not wireless security features. Preshared key is another wireless security feature, but it does not use login credentials.
Verified References: https://www.comptia.org/blog/wireless-security-standards
https://www.comptia.org/certifications/a
NEW QUESTION # 32
Which of the following security methods supports the majority of current Wi-Fi-capable devices without sacrificing security?
- A. TACACS+
- B. RADIUS
- C. WPA3
- D. MAC filleting
Answer: C
Explanation:
WPA3 (Wi-Fi Protected Access 3) is a wireless security method that supports the majority of current Wi-Fi-capable devices without sacrificing security. It is backward compatible with WPA2 devices and offers enhanced encryption and authentication features. MAC filtering is another wireless security method, but it can be easily bypassed by spoofing MAC addresses. RADIUS (Remote Authentication Dial-In User Service) and TACACS+ (Terminal Access Controller Access-Control System Plus) are network authentication protocols, but they are not wireless security methods by themselves. Verified Reference: https://www.comptia.org/blog/wireless-security-standards https://www.comptia.org/certifications/a
NEW QUESTION # 33
The audio on a user's mobile device is inconsistent when the user uses wireless headphones and moves around.
Which of the following should a technician perform to troubleshoot the issue?
- A. Enable the NFC setting on the device.
- B. Bring the device within Bluetooth range.
- C. Verify the Wi-Fi connection status.
- D. Turn on device tethering.
Answer: B
Explanation:
Bringing the device within Bluetooth range is the best way to troubleshoot the issue of inconsistent audio when using wireless headphones and moving around. Bluetooth is a wireless technology that allows devices to communicate over short distances, typically up to 10 meters or 33 feet. If the device is too far from the headphones, the Bluetooth signal may be weak or interrupted, resulting in poor audio quality or loss of connection.
NEW QUESTION # 34
A department manager submits a help desk ticket to request the migration of a printer's port utilization from USB to Ethernet so multiple users can access the printer. This will be a new network printer; thus a new IP address allocation is required. Which of the following should happen immediately before network use is authorized?
- A. Document the date and time of the change.
- B. Request an unused IP address.
- C. Submit a change request form.
- D. Determine the risk level of this change.
Answer: B
Explanation:
Explanation
An IP address is a unique identifier that allows a device to communicate with other devices on a network. A network printer needs an IP address to be accessible by multiple users on the network. Requesting an unused IP address from the network administrator or using an IP address scanner is the step that should happen immediately before network use is authorized, as it ensures that there is no IP address conflict or duplication on the network. Documenting the date and time of the change, submitting a change request form, and determining the risk level of this change are steps that should happen before requesting an unused IP address.
NEW QUESTION # 35
When a user calls in to report an issue, a technician submits a ticket on the user's behalf. Which of the following practices should the technician use to make sure the ticket is associated with the correct user?
- A. Provide the user with a unique ticket number that can be referenced on subsequent calls.
- B. Register the ticket with a unique user identifier
- C. Have the user provide a callback phone number to be added to the ticket
- D. Assign the ticket to the department's power user
Answer: A
Explanation:
Explanation
The technician should provide the user with a unique ticket number that can be referenced on subsequent calls to make sure the ticket is associated with the correct user. This is because registering the ticket with a unique user identifier, having the user provide a callback phone number to be added to the ticket, or assigning the ticket to the department's power user will not ensure that the ticket is associated with the correct user2.
NEW QUESTION # 36
A user is experiencing frequent malware symptoms on a Windows workstation. The user has tried several times to roll back the state but the malware persists. Which of the following would MOST likely resolve the issue?
- A. Encrypting the hard drive
- B. Quarantining system files
- C. Disabling TLS 1.0 support
- D. Reimaging the workstation
Answer: D
NEW QUESTION # 37
......
CompTIA 220-1102 exam is an essential part of the CompTIA A+ certification. 220-1102 exam is designed to validate the candidate's knowledge and skills related to operating systems, security, software troubleshooting, and operational procedures. Candidates who pass 220-1102 exam will have demonstrated their ability to manage and maintain personal computer systems and will be recognized by employers as skilled professionals in the field of IT.
Practice 220-1102 Questions With Certification guide Q&A from Training Expert VCE4Dumps: https://passguide.vce4dumps.com/220-1102-latest-dumps.html