WGU D317 CompTIA A+ Core 2 (220-1102) Security Questions & Answers 2026–2027 | Verified Ex, Exams of Computer Science

Prepare for the Western Governors University D317 CompTIA A+ Core 2 (220-1102) certification exam with this comprehensive study guide featuring verified practice questions, accurate answers, and detailed explanations based on the latest exam objectives. This resource covers operating systems, Windows administration, Linux and macOS fundamentals, cybersecurity principles, malware prevention, authentication, access control, troubleshooting methodologies, software support, backup and recovery, command-line utilities, remote support, and professional IT operational procedures. Updated for 2026–2027, this exam preparation guide is ideal for WGU D317 students, aspiring IT support specialists, and candidates preparing for the CompTIA A+ Core 2 (220-1102) certification exam.

Typology: Exams

2025/2026

Available from 07/02/2026

ai-user
ai-user 🇺🇸

1

(1)

864 documents

1 / 68

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Western Governors University D 317
CompTIA A+ Core 2 Certification
(Exam 220-1102) 2.0 Security update
Questions and Answers |With 100%
Verified Solutions | Updated & Verified
2026/2027 Graded A+
A new corporate policy dictates that all access to
network resources will be controlled based on the
user's job functions and tasks within the
organization. For example, only people working in
Human Resources can access employee records,
and only the people working in finance can access
customer payment histories. Which of the
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44

Partial preview of the text

Download WGU D317 CompTIA A+ Core 2 (220-1102) Security Questions & Answers 2026–2027 | Verified Ex and more Exams Computer Science in PDF only on Docsity!

Western Governors University D 317 CompTIA A+ Core 2 Certification (Exam 220-1102) 2.0 Security update Questions and Answers |With 100% Verified Solutions | Updated & Verified 2026/2027 Graded A+ A new corporate policy dictates that all access to network resources will be controlled based on the user's job functions and tasks within the organization. For example, only people working in Human Resources can access employee records, and only the people working in finance can access customer payment histories. Which of the

following security concepts is BEST described by this new policy? A. Least privilege Which type of security measure is used to control access to an area by using a retina scan? C. Biometric Which type of antivirus scan provides the best protection for a typical home user? B. On-access scans Which mitigation provides the best return on investment by mitigating the most vulnerable attack vector in an enterprise network? D. Provide end-user awareness training for office staff Your organization has recently suffered a data breach due to a server being exploited. As a part of the remediation efforts, the company wants to ensure that the default administrator password on each of the 1250 workstations on the network is

Dion Training wants to implement a new wireless network in their offices. Which of the following types would support encryption for traffic being sent and received over the network while still allowing users to connect to the open network without a password, passphrase, or digital certificate? C. WPA You are working as a penetration tester and have discovered a new method of exploiting a vulnerability within the Windows 10 operating system. You conduct some research online and discover that a security patch against this particular vulnerability doesn't exist yet. Which type of threat would this BEST be categorized as? C. Zero-day Which of the following types of encryption is considered the most secure to utilize in a SOHO network? D. WPA

A corporate workstation was recently infected with malware. The malware was able to access the workstation's credential store and steal all the usernames and passwords from the machine. Then, the malware began to infect other workstations on the network using the usernames and passwords it stole from the first workstation. The IT Director has directed its IT staff to develop a plan to prevent this issue from occurring again. Which of the following would BEST prevent this from reoccurring? A. Install an anti-virus or anti-malware solution that uses heuristic analysis What unmask should be set for a directory to have 700 as its octal permissions? D. rwx------ Your company wants to increase the security of its server room. Which TWO of the following should they install to protect the server room's contents? B. Badge reader and C. Biometric lock

following should the administrator do to correct this issue? A. Add a rule to the ACL to allow traffic on ports 80 and 53 A cybersecurity analyst notices that an attacker is trying to crack the WPS pin associated with a wireless printer. The device logs show that the attacker tried 00000000, 00000001, 00000002 and continued to increment by 1 number each time until they found the correct PIN of 13252342. Which of the following type of password cracking was being performed by the attacker? D. Brute-force Which of the following physical security controls would be the most effective in preventing an attacker from driving a vehicle through the glass doors at the front of the organization's headquarters? D. Bollards

Which mobile device strategy is most likely to introduce vulnerable devices to a corporate network? A. BYOD An attacker is using a word list that contains 1 million possible passwords as they attempt to crack your Windows password. What type of password attack is this? C. Dictionary Which of the following types of attacks are usually used as part of an on-path attack? A. Spoofing Dion Training is concerned with the possibility of employees accessing another user's workstation in secured areas without their permission. Which of the following would BEST be able to prevent this from happening? D. Require biometric identification for user logins

A hospital's file server has become infected with malware. The files on the server all appear to be encrypted and cannot be opened. The network administrator receives an email from the attacker asking for 20 bitcoin in exchange for the decryption key. Which type of malware MOST likely infected these computers? D. Ransomware You are renting space in another company's data center. To protect your server from being physically accessed when you are not in the building, what device should you use? B. Server lock Elizabeth was replacing a client's security device that protects their screened subnet. The client has an application that allows external users to access the application remotely. After replacing the devices, the external users cannot connect remotely to the application anymore. Which of the following devices was MOST likely misconfigured and is now causing a problem?

C. Firewall Which of the following types of attacks occurs when an attacker specifically targets the CEO, CFO, CIO, and other board members during their attack? C. Whaling Windows file servers commonly hold sensitive files, databases, passwords, and more. What common vulnerability is usually used against a Windows file server to expose sensitive files, databases, and passwords? A. Missing patches You are configuring a SOHO network for a small coffee shop. They have found that certain customers will buy a single coffee cup and then sit at the coffee shop all day to use the WiFi. The owner has asked you to block this customer's laptop from connecting by placing it on a blocklist. Which of the following configurations would you use to blocklist this customer's device based on its unique hardware identifier?

known bank stating that their accounts have been compromised and they need to "click here" to reset their banking password. Some of these users are not even customers of this particular bank, though. Which of the following best describes this type of attack? C. Phishing What permissions would be represented by the octal 517? B. r-x--xrwx Dion Training just released a new corporate policy that dictates all access to network resources will be controlled based on the user's job functions and tasks within the organization. For example, only people working in Human Resources can access employee records, and only the people working in finance can access customer payment histories. Which of the following security concepts is BEST described by this new policy? B. Least privilege

The server administrators have asked you to open the default port on the firewall for a new DNS server. Which of the following ports should you set to ALLOW in the ACL? B. 53 A. 3389 C. 110 While investigating a data breach, you discover that the account credentials used belonged to an employee who was fired several months ago for misusing company IT systems. The IT department never deactivated the employee's account upon their termination. Which of the following categories would this breach be classified as? A. Insider Threat Which of the following authentication protocols was developed by Cisco to provide authentication, authorization, and accounting services? A. TACACS+

following would be the BEST way to implement this requirement? ❍ A. MAC filtering A system administrator is configuring a RADIUS server for remote access. Which of the following security methods would be required for this configuration? ❍ A. Multifactor authentication A company is configuring a new wireless network for employees. The IT department has been asked to use a secure authentication method that integrates with the existing Windows domain. Which of the following security methods should be used? ❍ C. WPA2-Enterprise A system administrator is configuring a wireless network for employees in a large office building. The administrator would like to prevent unauthorized users in neighboring buildings from

viewing the corporate SSID. Which of the following should be configured? ❍ C. SSID hiding Which of the following security protocols should be used to encrypt and transmit data between a remote user and a company office? ❍ B. VPN Which of the following password policies would require users to create a new password after a certain number of days? ❍ B. Password expiration Which of the following authentication methods uses a time-sensitive code that changes every 30 seconds? ❍ D. TOTP A security administrator is configuring access control for a file server. Which of the following principles should be followed to ensure users only

A security administrator is configuring a firewall rule to allow secure web traffic. Which of the following ports should be allowed through the firewall? ❍ C. 443 Which of the following would be considered a physical security measure? ❍ C. Biometric scanner Which of the following attack types occurs when an unauthorized party intercepts communications between two legitimate users? ❍ B. Man-in-the-middle A user has installed a browser extension that claims to improve security but is instead redirecting traffic to malicious websites. Which of the following best describes this type of software? ❍ B. Trojan horse A technician is delivering a new laptop to a user and moving the older laptop to a different user.

Which of the following would allow the existing hard drive to be used but prevent recovery of any of the previous user's data? ❍ A. Regular format A company has just performed annual laser printer maintenance and has accumulated hundreds of used toner cartridges. Which of the following would be the BEST way to dispose of the old cartridges? ❍ B. Return to the manufacturer Jack, a technician, is scheduled to replace a faulty motherboard today, but the motherboard delivery has been delayed and will not arrive until tomorrow. The new motherboard will repair a laptop used by a company executive. Which of the following would be the BEST way to handle these events? ❍ D. Contact the end user and inform them of the shipping issue