Download CompTIA A+ Core 2 Exam Objectives Guide - Prof. Ali Yurukoglu and more Cheat Sheet Network security in PDF only on Docsity!
CompTIA A+ Certification
Exam: Core 2 Objectives
EXAM NUMBER: CORE 2 (220-1002)
Candidates are encouraged to use this document to help prepare for CompTIA A+ Core 2. In order to receive the CompTIA A+ certification, you must pass two exams: Core 1 (220-
- and Core 2 (220-1002). CompTIA A+ Core 2 measures the necessary skills for an entry- level IT professional. Successful candidates will have the knowledge required to:
- Assemble components based on customer requirements
- Install, configure, and maintain PCs, mobile devices, and software for end users
- Understand the basics of networking and security forensics
- Properly and safely diagnose, resolve, and document common hardware and software issues
- Apply troubleshooting skills
- Provide appropriate customer support
- Understand the basics of scripting, virtualization, desktop imaging, and deployment These content examples are meant to clarify the test objectives and should not be construed as a comprehensive listing of all the content of this examination.
EXAM ACCREDITATION CompTIA A+ is accredited by ANSI to show compliance with the ISO 17024 Standard and, as such, undergoes regular reviews and updates to the exam objectives. EXAM DEVELOPMENT CompTIA exams result from subject matter expert workshops and industry-wide survey results regarding the skills and knowledge required of an entry-level IT professional. CompTIA AUTHORIZED MATERIALS USE POLICY CompTIA Certifications, LLC is not affiliated with and does not authorize, endorse or condone utilizing any content provided by unauthorized third-party training sites (aka “brain dumps”). Individuals who utilize such materials in preparation for any CompTIA examination will have their certifications revoked and be suspended from future testing in accordance with the CompTIA Candidate Agreement. In an effort to more clearly communicate CompTIA’s exam policies on use of unauthorized study materials, CompTIA directs all certification candidates to the CompTIA Certification Exam Policies. Please review all CompTIA policies before beginning the study process for any CompTIA exam. Candidates will be required to abide by the CompTIA Candidate Agreement. If a candidate has a question as to whether study materials are considered unauthorized (aka “brain dumps”), he/she should contact CompTIA at [email protected] to confirm. PLEASE NOTE The lists of examples provided in bulleted format are not exhaustive lists. Other examples of technologies, processes, or tasks pertaining to each objective may also be included on the exam although not listed or covered in this objectives document. CompTIA is constantly reviewing the content of our exams and updating test questions to be sure our exams are current and the security of the questions is protected. When necessary, we will publish updated exams based on testing exam objectives. Please know that all related exam preparation materials will still be valid.
About the Exam
- 32-bit vs. 64-bit
- RAM limitations
- Software compatibility
- Workstation operating systems
- Microsoft Windows
- Apple Macintosh OS
- Linux
- Cell phone/tablet operating systems
- Microsoft Windows
- Android
- iOS
- Chrome OS
- Vendor-specific limitations
- End-of-life
- Update limitations
- Compatibility concerns between operating systems
- Windows 7
- Windows 8
- Windows 8.
- Windows 10
- Corporate vs. personal needs
- Domain access
- BitLocker
- Media center
- BranchCache
- EFS
- Desktop styles/user interface
1.0 Operating Systems
Compare and contrast common operating system types and their purposes.
Compare and contrast features of Microsoft Windows versions.
- Boot methods
- Optical disc(CD-ROM, DVD, Blu-ray)
- External drive/flash drive (USB/eSATA)
- Network boot (PXE)
- Internal fixed disk (HDD/SSD)
- Internal hard drive (partition)
- Type of installations
- Unattended installation
- In-place upgrade
- Clean install
- Repair installation
- Multiboot
- Remote network installation
- Image deployment
- Recovery partition
- Refresh/restore
- Partitioning
- Dynamic
- Basic
- Primary
- Extended
- Logical
- GPT
- File system types/formatting
- ExFAT
- FAT
- NTFS
- CDFS
- NFS
- ext3, ext
- HFS
- Swap partition
- Quick format vs. full format
- Load alternate third-party drivers when necessary
- Workgroup vs. Domain setup
- Time/date/region/language settings
- Driver installation, software, and Windows updates
- Factory recovery partition
- Properly formatted boot drive with the correct partitions/format
- Prerequisites/hardware compatibility
- Application compatibility
- OS compatibility/upgrade path
Summarize general OS installation
considerations and upgrade methods.
- Navigation
- ipconfig
- ping
- tracert
- netstat
- nslookup
- shutdown
- dism
- sfc
- chkdsk
- diskpart
- taskkill
- gpupdate
- gpresult
- format
- copy
- xcopy
- robocopy
- net use
- net user
- [command name] /?
- Commands available with standard privileges vs. administrative privileges
- Administrative
- Computer Management
- Device Manager
- Local Users and Groups
- Local Security Policy
- Performance Monitor
- Services
- System Configuration
- Task Scheduler
- Component Services
- Data Sources
- Print Management
- Windows Memory Diagnostics
- Windows Firewall
- Advanced Security
- Event Viewer
- User Account Management
- MSConfig
- General
- Boot
- Services
- Startup
- Tools
- Task Manager
- Applications
- Processes
- Performance
- Networking
- Users
- Disk Management
- Drive status
- Mounting
- Initializing
- Extending partitions
- Splitting partitions
- Shrink partitions
- Assigning/changing drive letters
- Adding drives
- Adding arrays
- Storage spaces
- System utilities
- Regedit
- Command
- Services.msc
- MMC
- MSTSC
- Notepad
- Explorer
- Msinfo
- DxDiag
- Disk Defragmenter
- System Restore
- Windows Update
- Internet Options
- Connections
- Security
- General
- Privacy
- Programs
- Advanced
- Display/Display Settings
- Resolution
- Color depth
- Refresh rate
- User Accounts
- Folder Options
- View hidden files
- Hide extensions
- General options
- View options
- System
- Performance (virtual memory)
- Remote settings
- System protection
- Windows Firewall
- Power Options
- Hibernate
- Power plans
- Credential Manager
- Programs and features
- HomeGroup
- Devices and Printers
- Sound
- Troubleshooting
- Network and Sharing Center
- Device Manager
- BitLocker
- Sync Center
Given a scenario, use appropriate Microsoft command line tools.
Given a scenario, use Microsoft operating system features and tools.
Given a scenario, use Microsoft Windows Control Panel utilities.
1.0 Operating Systems
- Mantrap
- Badge reader
- Smart card
- Security guard
- Door lock
- Biometric locks
- Hardware tokens
- Cable locks
- Server locks
- USB locks
- Privacy screen
- Key fobs
- Entry control roster
- Active Directory
- Login script
- Domain
- Group Policy/Updates
- Organizational Units
- Home Folder
- Folder redirection
- Software tokens
- MDM policies
- Port security
- MAC address filtering
- Certificates
- Antivirus/Anti-malware
- Firewalls
- User authentication/strong passwords
- Multifactor authentication
- Directory permissions
- VPN
- DLP
- Access control lists
- Smart card
- Email filtering
- Trusted/untrusted software sources
- Principle of least privilege
- Protocols and encryption
- WEP
- WPA
- WPA
- TKIP
- AES
- Authentication
- Single-factor
- Multifactor
- RADIUS
- TACACS
- Malware
- Ransomware
- Trojan
- Keylogger
- Rootkit
- Virus
- Botnet
- Worm
- Spyware
- Tools and methods
- Antivirus
- Anti-malware
- Recovery console
- Backup/restore
- End user education
- Software firewalls
- DNS configuration
2.0 Security
Summarize the importance of physical security measures.
Explain logical security concepts.
Compare and contrast wireless security protocols
and authentication methods.
Given a scenario, detect, remove, and prevent malware
using appropriate tools and methods.
2.0 Security
Compare and contrast social engineering, threats, and vulnerabilities.
Compare and contrast the differences of basic
Microsoft Windows OS security settings.
Given a scenario, implement security best
practices to secure a workstation.
- Social engineering
- Phishing
- Spear phishing
- Impersonation
- Shoulder surfing
- Tailgating
- Dumpster diving
- DDoS
- DoS
- Zero-day
- Man-in-the-middle
- Brute force
- Dictionary
- Rainbow table
- Spoofing
- Non-compliant systems
- Zombie
- User and groups
- Administrator
- Power user
- Guest
- Standard user
- NTFS vs. share permissions
- Allow vs. deny
- Moving vs. copying folders and files
- File attributes
- Shared files and folders
- Administrative shares vs. local shares
- Permission propagation
- Inheritance
- System files and folders
- User authentication
- Run as administrator vs. standard user
- BitLocker
- BitLocker To Go
- EFS
- Password best practices
- Setting strong passwords
- Password expiration
- Screensaver required password
- BIOS/UEFI passwords
- Requiring passwords
- Account management
- Restricting user permissions
- Logon time restrictions
- Disabling guest account
- Failed attempts lockout
- Timeout/screen lock
- Change default admin user account/password
- Basic Active Directory functions
- Account creation
- Account deletion
- Password reset/unlock account
- Disable account
- Disable autorun
- Data encryption
- Patch/update management
3.0 Software Troubleshooting
- Common symptoms
- Slow performance
- Limited connectivity
- Failure to boot
- No OS found
- Application crashes
- Blue screens
- Black screens
- Printing issues
- Services fail to start
- Slow bootup
- Slow profile load
- Common solutions
- Defragment the hard drive
- Reboot
- Kill tasks
- Restart services
- Update network settings
- Reimage/reload OS
- Roll back updates
- Roll back devices drivers
- Apply updates
- Repair application
- Update boot order
- Disable Windows services/applications
- Disable application startup
- Safe boot
- Rebuild Windows profiles
- Common symptoms
- Pop-ups
- Browser redirection
- Security alerts
- Slow performance
- Internet connectivity issues
- PC/OS lockup
- Application crash
- OS updates failures
- Rogue antivirus
- Spam
- Renamed system files
- Disappearing files
- File permission changes
- Hijacked email
- Responses from users regarding email
- Automated replies from unknown sent email
- Access denied
- Invalid certificate (trusted root CA)
- System/application log errors
- Identify and research malware symptoms.
- Quarantine the infected systems.
- Disable System Restore (in Windows).
- Remediate the infected systems. a. Update the anti-malware software. b. Scan and use removal techniques (safe mode, pre-installation environment). 5. Schedule scans and run updates. 6. Enable System Restore and create a restore point (in Windows). 7. Educate the end user.
Given a scenario, troubleshoot Microsoft Windows OS problems.
Given a scenario, troubleshoot and resolve PC security issues.
Given a scenario, use best practice procedures for malware removal.
3.0 Software Troubleshooting
Given a scenario, troubleshoot mobile OS and application issues.
Given a scenario, troubleshoot mobile OS
and application security issues.
- Common symptoms
- Dim display
- Intermittent wireless
- No wireless connectivity
- No Bluetooth connectivity
- Cannot broadcast to external monitor
- Touchscreen non-responsive
- Apps not loading
- Slow performance
- Unable to decrypt email
- Extremely short battery life
- Overheating
- Frozen system
- No sound from speakers
- Inaccurate touch screen response
- System lockout
- App log errors
- Common symptoms
- Signal drop/weak signal
- Power drain
- Slow data speeds
- Unintended WiFi connection
- Unintended Bluetooth pairing
- Leaked personal files/data
- Data transmission over limit
- Unauthorized account access
- Unauthorized location tracking
- Unauthorized camera/ microphone activation
- High resource utilization
4.0 Operational Procedures
Explain environmental impacts and appropriate controls.
Explain the processes for addressing prohibited content/
activity, and privacy, licensing, and policy concepts.
Given a scenario, use proper communication
techniques and professionalism.
- MSDS documentation for handling and disposal
- Temperature, humidity level awareness, and proper ventilation - Power surges, brownouts, and blackouts - Battery backup - Surge suppressor - Protection from airborne particles - Enclosures - Air filters/mask - Dust and debris - Compressed air - Vacuums - Compliance to government regulations
- Incident response
- First response
- Identify
- Report through proper channels
- Data/device preservation
- Use of documentation/ documentation changes
- Chain of custody
- Tracking of evidence/ documenting process - Licensing/DRM/EULA - Open-source vs. commercial license - Personal license vs. enterprise licenses - Regulated data - PII - PCI - GDPR - PHI - Follow all policies and security best practices
- Use proper language and avoid jargon, acronyms, and slang, when applicable
- Maintain a positive attitude/ project confidence
- Actively listen (taking notes) and avoid interrupting the customer
- Be culturally sensitive
- Use appropriate professional titles, when applicable
- Be on time (if late, contact the customer)
- Avoid distractions
- Personal calls
- Texting/social media sites
- Talking to coworkers while interacting with customers
- Personal interruptions
- Dealing with difficult customers or situations - Do not argue with customers and/or be defensive - Avoid dismissing customer problems - Avoid being judgmental - Clarify customer statements (ask open-ended questions to narrow the scope of the problem, restate the issue, or question to verify understanding) - Do not disclose experiences via social media outlets - Set and meet expectations/timeline and communicate status with the customer - Offer different repair/ replacement options, if applicable - Provide proper documentation on the services provided - Follow up with customer/user at a later date to verify satisfaction - Deal appropriately with customers’ confidential and private materials - Located on a computer, desktop, printer, etc.
Identify the basics of scripting.
Given a scenario, use remote access technologies.
- Script file types
- .bat
- .ps
- .vbs
- .sh
- .py
- .js
- Environment variables
- Comment syntax
- Basic script constructs
• RDP
- Telnet
- SSH
- Third-party tools
- Screen share feature
- File share
- Security considerations of each access method
4.0 Operational Procedures
DVI Digital Visual Interface DVI-D Digital Visual Interface-Digital ECC Error Correcting Code ECP Extended Capabilities Port EEPROM Electrically Erasable Programmable Read-Only Memory EFS Encrypting File System EIDE Enhanced Integrated Drive Electronics EMI Electromagnetic Interference EMP Electromagnetic Pulse EPROM Erasable Programmable Read-Only Memory EPP Enhanced Parallel Port ERD Emergency Repair Disk eSATA External Serial Advanced Technology Attachment ESD Electrostatic Discharge EULA End User License Agreement EVGA Extended Video Graphics Adapter/Array Ext2 Second Extended File System exFAT Extended File Allocation Table FAT File Allocation Table FAT12 12-bit File Allocation Table FAT16 16-bit File Allocation Table FAT32 32-bit File Allocation Table FDD Floppy Disk Drive FPM Fast Page Mode FSB Front-Side Bus FTP File Transfer Protocol FQDN Fully Qualified Domain Name GDDR Graphics Double Data Rate GDI Graphics Device Interface GUI Graphical User Interface GUID Globally Unique Identifier GPS Global Positioning System GPT GUID Partition Table GPU Graphics Processing Unit GSM Global System for Mobile Communications HAL Hardware Abstraction Layer HAV Hardware Assisted Virtualization HCL Hardware Compatibility List HDCP High-Bandwidth Digital Content Protection HDD Hard Disk Drive HDMI High Definition Media Interface HIPS Host Intrusion Prevention System HPFS High Performance File System HTML Hypertext Markup Language HTPC Home Theater PC
HTTP Hypertext Transfer Protocol HTTPS Hypertext Transfer Protocol Secure I/O Input/Output IaaS Infrastructure as a Service ICMP Internet Control Message Protocol ICR Intelligent Character Recognition IDE Integrated Drive Electronics IDS Intrusion Detection System IEEE Institute of Electrical and Electronics Engineers IIS Internet Information Services IMAP Internet Mail Access Protocol IMEI International Mobile Equipment Identity IMSI International Mobile Subscriber Identity IP Internet Protocol IPConfig Internet Protocol Configuration IPP Internet Printing Protocol IPS Intrusion Prevention System IPSec Internet Protocol Security IR Infrared IrDA Infrared Data Association IRP Incident Response Plan IRQ Interrupt Request ISA Industry Standard Architecture ISDN Integrated Services Digital Network ISO International Organization for Standardization ISP Internet Service Provider JBOD Just a Bunch of Disks KB Knowledge Base KVM Kernel-based Virtual Machine KVM Keyboard-Video-Mouse LAN Local Area Network LBA Logical Block Addressing LC Lucent Connector LCD Liquid Crystal Display LDAP Lightweight Directory Access Protocol LED Light Emitting Diode LPD/LPR Line Printer Daemon/Line Printer Remote LPT Line Printer Terminal LVD Low Voltage Differential MAC Media Access Control/Mandatory Access Control MAN Metropolitan Area Network MAPI Messaging Application Programming Interface mATX Micro Advanced Technology Extended MAU Media Access Unit/Media Attachment Unit MBR Master Boot Record MBSA Microsoft Baseline Security Analyzer
ACRONYM SPELLED OUT ACRONYM SPELLED OUT
MDM Mobile Device Management MFA Multifactor Authentication MFD Multifunction Device MFP Multifunction Product MicroDIMM Micro Dual Inline Memory Module MIDI Musical Instrument Digital Interface MIME Multipurpose Internet Mail Extension MIMO Multiple Input Multiple Output MMC Microsoft Management Console MP3 Moving Picture Experts Group Layer 3 Audio MP4 Moving Picture Experts Group Layer 4 MPEG Moving Picture Experts Group MSConfig Microsoft Configuration MSDS Material Safety Data Sheet MT-RJ Mechanical Transfer Registered Jack MUI Multilingual User Interface NaaS Network as a Service NAC Network Access Control NAS Network-Attached Storage NAT Network Address Translation NetBIOS Networked Basic Input/Output System NetBEUI Networked Basic Input/Output System Extended User Interface NFC Near Field Communication NFS Network File System NIC Network Interface Card NiCd Nickel Cadmium NiMH Nickel Metal Hydride NLX New Low-profile Extended NNTP Network News Transfer Protocol NTFS New Technology File System NTLDR New Technology Loader NTP Network Time Protocol NTSC National Transmission Standards Committee NVMe Non-volatile Memory Express OCR Optical Character Recognition OEM Original Equipment Manufacturer OLED Organic Light Emitting Diode OS Operating System PaaS Platform as a Service PAL Phase Alternating Line PAN Personal Area Network PAT Port Address Translation PC Personal Computer PCI Peripheral Component Interconnect PCI Payment Card Industry
PCIe Peripheral Component Interconnect Express PCIX Peripheral Component Interconnect Extended PCL Printer Command Language PCMCIA Personal Computer Memory Card International Association PE Preinstallation Environment PGA Pin Grid Array PGA2 Pin Grid Array 2 PGP Pretty Good Protection PII Personally Identifiable Information PIN Personal Identification Number PHI Personal Health Information PKI Public Key Infrastructure PnP Plug and Play PoE Power over Ethernet POP3 Post Office Protocol 3 PoS Point of Sale POST Power-On sSelf-tTest POTS Plain Old Telephone Service PPM Pages Per Minute PPP Point-to-Point Protocol PPTP Point-to-Point Tunneling Protocol PRI Primary Rate Interface PROM Programmable Read-Only Memory PS/2 Personal System/2 connector PSTN Public Switched Telephone Network PSU Power Supply Unit PVA Patterned Vertical Alignment PVC Permanent Virtual Circuit PXE Preboot Execution Environment QoS Quality of Service RADIUS Remote Authentication Dial-In User Server RAID Redundant Array of Independent (or inexpensive) Discs RAM Random Access Memory RAS Remote Access Service RDP Remote Desktop Protocol RF Radio Frequency RFI Radio Frequency Interference RFID Radio Frequency Identification RGB Red Green Blue RIP Routing Information Protocol RIS Remote Installation Service RISC Reduced Instruction Set Computer RJ-11 Registered Jack Function 11 RJ-45 Registered Jack Function 45
ACRONYM SPELLED OUT ACRONYM SPELLED OUT
EQUIPMENT
- Apple tablet/smartphone
- Android tablet/smartphone
- Windows tablet/Smartphone
- Chromebook
- Windows laptop/Mac laptop/Linux laptop
- Windows desktop/Mac desktop/Linux desktop
- Windows Server w/Active Directory and Print Management
- Monitors
- Projectors
- SOHO router/switch
- Access point
- VoIP phone
- Printer
- Laser/inkjet
- Wireless
- 3D printer
- Surge suppressor
- UPS
- VR headset
- Smart devices (IoT devices)
SPARE PARTS/HARDWARE
- Motherboards
- RAM
- Hard drives
- Power supplies
- Video cards
- Sounds cards
- Network cards
- Wireless NICs
- Fans/cooling devices/heat sink
- CPUs
- Assorted connectors/cables
- Adapters
- Network cables
- Unterminated network cables/connectors
- AC adapters
- Optical drives
- Screws/stand-offs
- Cases
- Maintenance kit
- Mice/keyboards
- KVM
- Console cable
TOOLS
- Screw drivers
- Multimeter
- Wire cutters
- Punchdown tool
- Crimper
- Power supply tester
- Cable stripper
- Standard technician toolkit
- ESD strap
- Thermal paste
- Cable tester
- Cable toner
- WiFi analyzer
- SATA to USB connectors
SOFTWARE
- Operating systems
- Linux
- Chrome OS
- Microsoft Windows
- Mac OS
- Android
- iOS
- PE Disk/Live CD
- Antivirus software
- Virtualization software
- Anti-malware
- Driver software
CompTIA has included this sample list of hardware and software to assist
candidates as they prepare for the A+ exam. This list may also be helpful for
training companies that wish to create a lab component for their training offering.
The bulleted lists below each topic are sample lists and not exhaustive.
A+ Proposed Hardware and Software List
© 2018 CompTIA Properties, LLC, used under license by CompTIA Certifications, LLC. All rights reserved. All certification programs and education related to such programs are operated exclusively by CompTIA Certifications, LLC. CompTIA is a registered trademark of CompTIA Properties, LLC in the U.S. and internationally. Other brands and company names mentioned herein may be trademarks or service marks of CompTIA Properties, LLC or of their respective owners. Reproduc- tion or dissemination prohibited without written consent of CompTIA Properties, LLC. Printed in the U.S. 04992B-Apr