Dion Training CompTIA A+ Core 2 Flashcards

Question 1

Q

○ Windows

Answer

A

■ A graphical operating system developed and published by Microsoft
■ One of the most popular operating systems in the world

Question 2

Q

○ Versions

Answer

A

■ Windows 1.01
■ Windows 2.01
■ Windows 3.01
■ Windows 95
■ Windows 98
■ Windows 2000
■ Windows Me
■ Windows XP
■ Windows Vista
■ Windows 7
■ Windows 8
■ Windows 8.1
■ Windows 10
■ Windows 11

Question 3

Q

○ The oldest one that we’re going to support is known as

Answer

A

windows 8.1

Question 4

Q

○ Currently supported versions

Answer

A

■ Windows 10 support is going to continue to operate until October of
2025
■ Windows server 2016 will be supported by Microsoft up until January of
2027
■ Windows server 2019 will be supported all the way up through January of
2029
■ Windows server 2022 will be supported all the way up until October of
2031

Question 5

Q

○ Windows used to have a 90% market share when

Answer

A

it came to home computer
operating systems

Question 6

Q

○ Linux

Answer

A

■ Made by lots and lots of different companies, organizations, and
individual people

Question 7

Q

○ An open-source operating system

Answer

A

■ You have access to all the underlying code, and you can make any
changes you want

Question 8

Q

○ Some distributions use a subscription-based model with they only give you
access to their code

Answer

A

■ Ubuntu
● A free software you can install on your desktop or your server
■ Fedora, Debian, Mint, Arch, or CentOS
● Community supported distributions

Question 9

Q

○ Two different formats for lifecycle support

Answer

A

■ Standard release model
● A version number associated with
■ Rolling release model
● There is no long-term support version and there’s no version
numbers at all because you’re dealing with this constant update
Android

Question 10

Q

○ Android operating system

Answer

A

■ A specific operating system that was designed to be able to support the
smartphone and tablet market
■ Originally released by the open handset Alliance, which is primarily
backed and driven by Google

Question 11

Q

● Android

Answer

A

○ Uses a much shorter lifecycle than does desktop or server environments

Question 12

Q

○ Older devices can’t necessarily support the newer operating systems

Answer

A

■ Android is based on Linux
■ Each manufacturer can make their own version of Android

Question 13

Q

○ Chrome OS

Answer

A

■ Proprietary operating system developed by Google
■ Developed to run specifically on laptops and desktop hardware created
by Google
■ This hardware was designed to keep costs very low

Question 14

Q

○ Chrome OS devices have built-in virus protection and firewalls

Answer

A

■ Chrome OS is extremely safe and secure

Question 15

Q

○ Proprietary operating system created by Google

Answer

A

■ Designed to run on specific hardware
■ Stripped down operating system
■ Primarily uses web applications and supports Android apps

Question 16

Q

○ macOS

Answer

A

■ Operating system used on Mac computers, built by Apple
● iMac
● Mac desktop
● MacBook

Question 17

Q

○ macOS was previously called

Question 18

Q

● macOS

Answer

A

○ Desktop operating system that only operates on Apple devices

Question 19

Q

○ iOS and iPad iOS

Answer

A

■ Developed by apple for their smartphones and tablets
● iOS operating system
○ Developed as a closed source operating system
○ Have a very high percentage of total market share for
mobile devices
● iPad iOS
○ Developed as a fork of the mean iOS branch

Question 20

Q

○ Organize data and information on a

Answer

A

hard drive, solid state drive, or other storage
device

Question 21

Q

○ File systems must be created before

Answer

A

you can install an operating system or storage device like a hard disk drive

Question 22

Q

○ Types supported by operating systems

Answer

A

■ Windows operating systems use NTFS, FAT32, or exFAT
■ Linux will use ext3, ext4, or exFAT for your filesystem
■ macOS uses the Apple file system known as APFS

Question 23

Q

○ New Technology Filesystem (NFTS)

Answer

A

■ Linux and macOS cannot read NTFS by default, you would have to use
third party utilities to read and write NTFS
■ A 64-bit filesystem that allows for large volumes and very large file sizes
■ POSIX supports Unix and Linux compatibility between NTFS and a Unix or
Linux filesystem
■ Indexing is a catalog of file and folder locations to help speed up searches
■ Dynamic discs can combine physical discs into one larger disc that is
understood by the operating system

Question 24

Q

○ New Technology Filesystem (NFTS)

Answer

A

■ Has a lot of key features such as journaling, snapshots, security, POSIX
compliance, indexing, and dynamic discsJournaling allows for faster
recovery from power outages and crashes
● Snapshots allow you to make a read-only copy of a file, even if it is already locked

Question 25

Q

■ NTFS has a higher security level and allows you access to audit trails,
quota management, and an encrypting filesystem

Answer

A

● Each file can be protected against unauthorized access

Question 26

Q

■ Windows and NTFS are not case sensitive

Answer

A

● JASON and jason would be the same file to NTFS
● Windows doesn’t rely on case sensitivity when reading NTFS, but Linux and Unix will

Question 27

Q

○ File allocation table 32, also known as FAT32

Answer

A

■ You can only have a total drive size of up to 2 TB and the maximum file
size is 4 GB
■ FAT is limited due to it being a 32-bit allocation table, where the
maximum file size is around 4.2 billion bytes or 4 GB
■ FAT is supported by Windows, Unix, Linux, and macOS
■ FAT32 is usually used on removable drives like external hard drives or
USB flash drives

Question 28

Q

○ Extended file type system, also known as ext3 and ext4

Answer

A

■ These are supported by Linux and Unix systems, but not by Windows or
macOS by default
■ ext3 has a maximum volume size of 32 TB and maximum file size of 2 TB
■ ext4 has a maximum volume size of 1 EB and maximum file size of 16 TB

Question 29

Q

○ Apple file system or APFS

Answer

A

■ APFS has been the default file system of macOS since 2018
■ APFS is considered a journaled filesystem, and provides same journaling
benefits as in NTFS
■ APFS has a higher level of performance when dealing with SSD than a
traditional HDD

Question 30

Q

○ Extensible file allocation table, also known as exFAT

Answer

A

■ exFAT supports large volumes of up to 128 PB in size and file sizes of up
to 16 EB
■ exFAT is considered cross platform capable and can be used on Windows,
Unix, Linux, or macOS
● Windows
○ NTFS
● Linux
○ ext4
● macOS
○ APFS

Question 31

Q

● Compatibility Concerns

Answer

A

○ Every software application is coded to run on a specific operating system
○ Devices that are running different operating systems can communicate on the
same data network
○ Most computers can talk the same language using TCP/IP
○ The ability of end users to use different operating systems
○ A traditional user may be used to work with just one or two operating systems
○ Train users to understand how to use your operating system

Question 32

Q

○ Windows support

Answer

A

Windows 11
● 64-bit version
■ Windows 10
● 32-bit or 64-bit version
■ 32-bit Version
● 32-bit programs
■ 64-bit Version
● 32-bit or 64-bit programs
■ Each piece of hardware will be 32-bit or 64-bit based on the processor

Question 33

Q

○ Choose the version of the operating system that will align with your processor

Answer

A

■ 32-bit version of Windows has lower memory requirements
■ Have a minimum of 4 GB of RAM to run Windows
■ Check if your processor can support 32-bit or 64-bit operations

Question 34

Q

○ Windows Home

Answer

A

■ Basic edition of the Windows operating system
● Not designed to be used in a business environment
● Upgrade to Windows Pro or Windows Enterprise for additional
business features

Question 35

Q

○ Windows Home

Answer

A

■ Storage device encryption (not Bitlocker)
■ Windows 11 Home edition is only in 64-bit version
■ Windows Home edition support multi-core processors
■ A multi-core processor has 2, 4, 6, 8, or even up to 64 cores
■ It does support hyper-threading
■ You can move up from Windows 10 to 11 using the same edition

Question 36

Q

○ Windows Home

Answer

A

■ 64-bit can support large amounts of memory
● OEM
○ The OEM license is used by the original manufacturers
● Retail

Question 37

Q

○ Windows Pro

Answer

A

■ Windows operating system that focuses on business use
■ Windows Pro can be used in a domain environment
■ OEM is the original equipment manufacturer license
■ Retail license allows you to buy one license for one piece of hardware
■ Windows Pro is designed to be used by small and medium-sized businesses

Question 38

Q

○ Windows Pro

Answer

A

■ BitLocker
● Full disk drive encryption schema that is provided inside of Windows Pro and Windows Enterprise editions

Question 39

Q

○ Windows Pro

Answer

A

■ Group Policy Editor
● Creates and applies operating system and software application settings across all the users
● The group policy editor is not available within the Home edition

Question 40

Q

○ Windows Pro

Answer

A

■ Remote Desktop Protocol (RDP)
● Remotely connect to your Windows Pro machine from anywhere in the world

Question 41

Q

○ Windows Pro

Answer

A

■ Windows Information Protection (WIP)
● Helps identify and protect against potential data leakage or data exfiltration

Question 42

Q

○ Windows Pro

Answer

A

■ Windows Pro for Workstations is an improved version of the Windows Pro
edition
● It provides support for additional hardware
● Windows Pro for Workstations can support up to four-way multiprocessing

Question 43

Q

○ Windows Enterprise and Education

Answer

A

■ Windows Enterprise is a fully featured version of Windows
■ Enterprise edition can only use volume licensing
■ UE-V is used to capture, save, and manage Windows 10 operating system
■ Allows multiple people to use the same machine but separates all their
settings
■ Direct access is used to allow connectivity for remote users without the use
of a VPN
■ Credential guard allows for virtualization-based security and only grants
access to privileged systems
■ Windows To Go creates an image version of a corporate Windows 10
environment that can be run on a user’s personal computer
■ Windows Enterprise edition has a limit of 6 TB of memory
■ Windows Enterprise supports up to 4 physical processors
■ Both are only going to be using a volume licensing
■ Windows Education and Windows Pro Education are the same as Windows
Enterprise and Windows Pro editions

Question 44

Q

○ Windows Enterprise and Education

Answer

A

■ Application virtualization under a tool known as App-V
● App-V protects the rest of the operating system from any kind of malware

Question 45

Q

○ Upgrading Windows

Answer

A

■ In-place upgrade means the setup program for the new version will be
launched within the current operating system
■ Verify the system meets the minimum requirements for the new operating
system
■ Download the Windows 11 installation media and place it on a USB drive
■ Launch the setup program from that USB within Windows 10 and then
perform a full upgrade
■ Data-only upgrade keeps all personal files, but not any applications or
settings
■ Clean install will delete all personal settings, files, and folders

Question 46

Q

○ Clean installation

Answer

A

■ When an operating system is installed onto a new computer
■ In this type of installation, all data, user settings, and programs will be
deleted

Question 47

Q

○ In-place upgrade

Answer

A

■ Changes the current version of the operating system into a newer version
■ Clean installation does not bring over any of your data, applications, or
user settings

Question 48

Q

○ Attended installation

Answer

A

■ Requires a system administrator to sit in front of the computer during the
installation process

Question 49

Q

○ Unattended installation

Answer

A

■ Used by the system administrator when multiple machines need the
installation

Question 50

Q

○ Image deployment

Answer

A

■ Copies an image file of a hard drive onto the new system
■ This image can be stored on a DVD or USB media

Question 51

Q

○ Remote network installation

Answer

A

The image to be used will be sent over the network

Question 52

Q

○ Look at the system requirements

Answer

A

■ Hardware compatibility
■ Application support
■ Backup files and user preferences
■ Third-party drivers

Question 53

Q

○ Make sure the processor, chipset, and memory can support the new OS

Answer

A

■ In Windows 11, 64-bit edition, the hardware requirements are doubled
from Windows 10
■ x86 or x64

Question 54

Q

● Upgrade Considerations

Answer

A

○ Verify the new operating system has support for the peripherals that you need
○ Run the PC Health Check app before performing an in-place upgrade
○ Remain with the older operating system
○ Replace the peripheral to something supported by the new operating system
○ Run a backup first
○ Obtain any third-party drivers that you may need
○ Make sure to obtain the right third-party drivers

Question 55

Q

● Product Lifecycle

Answer

A

○ Mainstream support is for every version of the operating system for a minimum
of five years
○ Extended support is the additional period for some of the products that can
extend another three to five years
○ End of life means that product is no longer supported

Question 56

Q

○ Legacy Operating System

Answer

A

■ A product that is no longer supported and considered abandoned or
orphaned

Question 57

Q

○ Windows 10 and 11 get mainstream support for at least five years

Answer

A

■ Feature updates usually occur every 6 to 12 months
■ Feature updates are not going to change the requirements for that
operating system
■ Every product, including operating systems, has a defined life cycle
■ Windows will provide at least five years of mainstream support
■ Once that operating system reaches end of life, there will be no more
security patches

Question 58

Q

○ Optical Media

Answer

A

■ Any type of disk that uses laser or light to read and write data
■ Many newer computers don’t have optical drives, so using optical media
is less common

Question 59

Q

○ USB connected drives

Answer

A

■ Can be many types of drives
■ USB connected drives can be CDs, DVDs, Blu-ray, solid state drives, flash
drives, or hot swappable hard drives
■ To make sure your USB device is bootable, you need a media creation
tool to create the installation media

Question 60

Q

○ Network boot devices

Answer

A

■ Take advantage of something inside your BIOS or UEFI
■ This allows you to read boot media over the network
■ Windows generally use the PXE environment to boot up the setup
program to install Windows
■ If you rely on network boot, you need to ensure you have DHCP enabled
to get an IP address assigned to your server

Question 61

Q

○ Internet-based boot method

Answer

A

■ Allows the system to boot up its system over the Internet
■ The computer will boot up a minimalist version of an operating system
that is used to download the setup files

Question 62

Q

○ Internal hard disk drive partition

Answer

A

■ A hidden device partition created by your manufacturer
■ If your purchased Windows 11 laptop gets corrupted, do a clean install by
booting from the internal hidden partition

Question 63

Q

● Boot Methods

Answer

A

○ Configure your BIOS or UEFI to have the proper boot order
○ If booting from a USB drive, you need to place it above the hard disk in the boot
order

Question 64

Q

● Partitioning Storage Devices

Answer

A

○ Once you boot up the setup program, ensure the storage devices are properly
partitioned
○ By default, at least one partition on a fixed disk is needed before you can
perform a high-level disk format for your file system

Answer 64

A

○ Types
■ Hard Disk Drives
● Also known as HDDs
■ Solid State Devices
● Also known as SSDs
■ Both HDDs and SSDs require partitioning and formatting before using
them to store an operating system

Answer 65

A

■ Master Boot Record (MBR)
● The traditional style of doing partitions on a particular fixed
storage device
● The first 512-byte sector on a disk contains the MBR, which has
the info about the physical disk on it
● Inside the MBR, you will be able to carve up the physical disk into
four primary partitions
● Any of these partitions can be marked as active, which signals the
system to look for the operating system to boot up
● When booting up initially, it will read the first 512-byte sector
from the hard disk which will have the MBR on it
● That will be partition zero, but the boot loader will ask which
device you would like to boot up, Windows or Linux
● You can also use partitioning to make multiple areas of storage
instead of just having one single drive
● One drive for the operating system and one for the data in two
different partitions
● MBR has limitations, such as only able to run four primary
partitions and only supports a disk size of 2 TB

Answer 66

A

● Provides a more up-to-date schema to address MBR limitations
● Windows can support up to 128 partitions with GPT
● GUID partition table can support drives over 2 TB, which is good
for its 128 partitions
● The system must support UEFI as its boot method to be able to
use GPT
● Most systems use UEFI for its 64-bit processors since BIOS only
supports 32-bit processors
● Windows supports NTFS, macOS supports APFS, and Linux
supports either ext3 or ext4 (depending on the distribution used)
● Choose the file system that works best with your operating
system, like Windows with NTFS or macOS with APFS
● This may be a good reason to have two partitions, if you are using
macOS and Windows, or Linux and Windows
● It is important to understand what limitations you have when
choosing file systems

Answer 67

A

■ Recovery and reset is helpful when there is some malware, or you are
going to sell your machine
■ Normally, a message will pop up with the required key, such as F11 or
CTRL + F11
■ A text or graphics display will walk you through how to do a full recovery
or repair

Answer 68

A

■ A disadvantage of a full recovery is you lose everything on the system
■ A disadvantage of a full recovery is you lose everything on the system

Answer 69

A

○ With a full recovery, all files will be lost, unless you have them saved on a backup
drive to bring back into the system
○ Under refresh or repair mode, your machine will reset and try to repair itself
without doing a full recovery
○ To repair instead of factory reset, you go to the same menu and just choose the
repair/reset options
○ With Windows, most hardware will include a recovery partition that you can
boot up from

Answer 70

A

■ 32-bit or 64-bit processor
■ Processor speed and cores available
■ Memory available for that application
■ Have more than the minimum required for best performance
■ Amount of storage space available

Answer 71

A

■ Dedicated graphics card or integrated graphics card
■ VRAM available

Answer 72

A

○ Graphics cards can be embedded into the motherboard or into the processor
○ Integrated GPU can handle most day-to-day applications in an office environment

Answer 73

A

■ 8 to 16 gigabytes of RAM available
■ External Hardware Token
■ Digital key that can unlock an application

Answer 74

A

○ Download from the app store
■ These app stores will handle all the installation process for you
■ These app stores take precautions to ensure that the software is of good
quality
■ Not all applications can be found inside the app store

Answer 75

A

■ CD or DVD as a distribution method is known as Physical Media
■ Physical media is not the most convenient way to install software
■ Requires to be picked up at some retail location
■ Software is not going to be the most up to date version

Answer 76

A

■ ISO File
● Digital file format used to replicate a physical CD, DVD or Blu-ray
Disc
○ Windows
■ Right click and select “Mount”
○ Mac
■ Use the Disk Utility

Answer 77

A

■ Single user license means you can install one copy of that application on
one system
■ Some applications will support multiple copies being installed on multiple
systems for use by a single user
■ Never install an application on a system without a valid license
■ Understand the terms of a software license

Answer 78

A

■ Manufacturer’s Support
● Extended support agreement between the company and the
manufacturer

Answer 79

A

■ Third-party manufacturer who made that software to train your users
■ Make sure to budget for that in terms of time and costs

Answer 80

A

■ Single component
■ Larger network
■ Larger enterprise system

Answer 81

A

■ Send a technician to every machine to manually update it
■ Use automation to push that software over the network to all the clients
● The user doesn’t have to be logged into the system and the administrator doesn’t have to go to that system

Answer 82

A

■ What clients are on the network
■ What servers are being used
● Windows Deployment Service
● Microsoft Deployment Toolkit
● Apple Business Manager
● Private repositories

Answer 83

A

■ Some applications are going to slow down the system

Answer 84

A

Some applications are going to be memory intensive

Answer 85

A

Some applications are going to take a lot of storage space

Answer 86

A

Test the applications on a sample system to see impacts

Answer 87

A

○ Some applications will rely heavily on the network

Answer 88

A

■ Backup tools will steal a lot of the network’s performance by
overwhelming the connection

Answer 89

A

■ Break down the deployment into small groups
■ Use times that are the least impactful for the users

Answer 90

A

■ Fiber connects directly into a network interface card
■ Copper connection uses a Cat 5, Cat 6, Cat 7, or Cat 8 connector using a
UTP or STP cable

Answer 91

A

○ Use the device manager to see what network adapter is installed on the system
and its specifications

Answer 92

A

○ Wi-Fi connections are set up and managed through the device manager

Answer 93

A

○ Connect to a wide area network over a wireless connection, and is most seen
with cellular modems or cellular hotspots

Answer 94

A

■ Some are done monthly, some are unlimited, and some are allocated
over a given period
■ Additionally, some plans will cap your transferable data and cut off your
connection

Answer 95

A

■ Overage Fees
● Some cellphone carriers charge $10 to $20 per GB beyond the
data cap
■ Throttling
● With throttling, you will still be able to use data, but at a much lower speed
■ Unlimited
● Unlimited plans have no data cap, you can use as much as you want and at the highest levels of speed

Answer 96

A

○ Used to connect anyone or any resources from one private network to another
over a public network
○ VPNs will allow you to connect back to your office and access your data in a
secure manner

Answer 97

A

■ They are built into the operating system
■ Set up through the Network Center

Answer 98

A

■ IP address
■ Subnet mask
■ Gateway
■ DNS server

Answer 99

A

■ Administrator Accounts
● Can do everything on the system
■ Standard Accounts
● Has a limited subset of actions that can be taken
■ Guest Accounts
● Most limited subset of actions that can be taken

Answer 100

A

■ Creates folders for the user

Answer 101

A

○ A Control Panel applet
○ Controls the different pieces of software on a particular Windows system
○ Can install and uninstall programs
○ Can set up features like Containers and Hyper-V

Answer 102

A

○ Provide you with a wizard and an interface to add devices manually and create
shortcuts to the different configuration pages
○ There is a lot you can do with devices, which are things like mice, keyboards,
webcams, etc.
○ This area of the control panel is where you can edit the functionality of mice,
keyboards, monitors, etc.

Answer 103

A

○ An older legacy applet that can be used to configure the old legacy web browser
Internet Explorer
○ Most places don’t use Internet Explorer anymore, and use things like Microsoft
Edge or Google Chrome, but some places still rely on Internet Explorer
○ When using the Internet Options, you are only configuring Internet Explorer

Answer 104

A

○ Status of any network adapter
○ Change settings
○ Configure media streaming

Answer 105

A

○ Software-based/ Host-based Firewall

Answer 106

A

■ Public Networks
● Airports, hotels, etc.
■ Private Networks
● Business/home networks

Answer 107

A

○ Configures Microsoft Outlook, but not other mail apps like Thunderbird or webbased mail like Gmail
○ Mail only works with Microsoft Outlook and allows for the configuration of email
clients under different profiles

Answer 108

A

○ Used to select your input such as your microphone or your output

Answer 109

A

○ The exam objectives list the system as part of the control panel

Answer 110

A

Has all information about the system settings

Answer 111

A

○ Allows for the viewing and editing of properties of the different pieces of
hardware installed on a system
○ Device Manager is a separate program that lets you view and edit the properties
of hardware
○ installed on a given system

Answer 112

A

○ Collection of tools that can be used for more in-depth configuration or
troubleshooting

Answer 113

A

■ Actually links to programs

Answer 114

A

○ Configures how the search capability inside File Explorer is going to work
○ Indexing options configure how things will be indexed to increase search speeds

Answer 115

A

○ Applet in the Control Panel
○ Can set options for how the file explorer opens and how files, folders, and
contents are viewed

Answer 116

A

■ Shows the file, folders, and contents for the entire system

Answer 117

A

○ Allows to control the power management on a Windows system
■ Turn off or reduce the power
■ Use less energy
○ Advanced Configuration and Power Interface
○ Industry standard for power management services designed to allow software
and hardware to have compatibility

Answer 118

A

■ Most of the devices are going to lose power

Answer 119

A

■ Power will be maintained to the memory

Answer 120

A

■ This applet conserves energy or maximizes performance by choosing how
the computer will manage power

Answer 121

A

■ Gives access to all sorts of settings to configure the input and output
options
■ Accessibility area

Answer 122

A

○ Used to administer and configure the Windows 10 and 11 operating systems
○ The Windows Setting application provides easy to use applets

Answer 123

A

○ Monitors the computer’s key resources, like processing, memory, storage, and
network capacity
○ Task Manager is used to monitor the computer’s key resources, things like
processing, memory, storage, and network capacity

Answer 124

A

○ A tool used for investigating and troubleshooting system hardware, components,
and peripherals
○ Device manager is used to investigate and troubleshoot all sorts of system
hardware, components, and peripherals

Answer 125

A

○ Provides a summary of all the fixed and removable disks on the system, including
HDDs, SSDs, and optical drives
○ This is a tool that formats disk drives, creates partitions, shrinks volumes, creates
RAIDs, and more

Answer 126

A

■ Fragmentation
● Disk fragmentation only truly affects hard drives, and this is
because of the way data is written
■ Capacity
● Capacity is the cap of data you can have on your disk
■ Damage
● Damage can happen when you cut off power to a disk being read
or written, or if you drop the device

Answer 127

A

■ Disk defragmenter
■ Disk cleanup utility

Answer 128

A

○ Used to run commands and scripts automatically in the background at any given
interval

Answer 129

A

○ Allows you to go through log files and see what has happened on a given
Windows system

Answer 130

A

■ Information
● Least serious issue
● Doesn’t require actions
■ Warning
● Event that could lead to an error or critical issue if not remediated
● Don’t need to be investigated or addressed immediately
■ Error
● Should be investigated and addressed
● It won’t stop the system from operating

Answer 131

A

● Fix as soon as possible
● Most serious

Answer 132

A

● Provides more details about what is happening

Answer 133

A

○ Provide real-time information about system resources by keeping track of what
things are happening in the operating system
○ Monitor performance over time and find the issue by looking at some key
counters

Answer 134

A

○ Provides the ability to create, modify, disable, and delete user accounts along
with the setting or resetting of passwords

Answer 135

A

○ Provides a way of configuring different Windows settings across all machines in
the network

Answer 136

A

○ Looks at the different digital certificates installed on the system and provides a
way of requesting and importing new certificates
○ Certificate manager provides the ability to manage all digital certificates on the
system

Answer 137

A

○ Produces a comprehensive report on the different pieces of hardware and
software inside a Windows system

Answer 138

A

○ Gives a better version of the type of monitoring provided by the task manager
○ Resource Monitor is essentially an enhanced or better version of the snapshot
and overview monitoring inside the Task Manager

Answer 139

A

○ Used to modify various settings and files that affect the way a computer boots
up and loads Windows

Answer 140

A

A database which has all the different settings and configurations across
the entire operating system

Answer 141

A

○ A container for plugins or snap-ins that can be used to create custom admin
tools to configure a system

Answer 142

A

○ CLI – Command Line Interface

Answer 143

A

■ Provides a text-based user interface
■ Some commands are run in the administrative command prompt only
■ Syntax (how the command is typed) is important
● Always use the proper syntax when entering commands

Answer 144

A

Text base

Answer 145

A

Uses a mouse or finger to navigate

Answer 146

A

■ Allows to run a series of different text-based commands and be able to
run different tools or utilities

Answer 147

A

● Create a new user account
● Access files or folders

Answer 148

A

Use the regular command prompt first

Answer 149

A

■ used to move into a different directory

Answer 150

A

used to display a list of directory and subdirectory files

Answer 151

A

used to create new directories and subdirectories within the file system

Answer 152

A

■ used to delete or remove a directory or subdirectory within the file
system

Answer 153

A

■ copy
● used to copy one or more files
■ xcopy
● used to copy files, directories, and subdirectories
■ robocopy
● used to copy files, directories, and subdirectories with support for
longer file names and network paths

Answer 154

A

■ Moving files can function like copying files

Answer 155

A

○ diskpart
■ used to manage the computer’s disk drives, partitions, volumes, and
virtual hard disks
○ format
■ used to delete the contents of the storage device and create a new file
○ chkdsk
■ used to scan the file system for file system metadata errors

Answer 156

A

○ This command can run at various times when the user is not at the computer

Answer 157

A

○ Provides a manual interface for verifying system files and restoring them from
the cache

Answer 158

A

○ Use winver command

Answer 159

A

■ ipconfig provides information about own network connection
■ displays the current TCP/IP network configuration
■ refreshes DHCP and DNS settings

Answer 160

A

■ ping verifies there is good connectivity between the client and the
remote destination

Answer 161

A

■ tracert shows each stop along the way by using multiple pings all the way
out and all the way back
■ used to determine the path by sending an ICMP echo request

Answer 162

A

■ pathping gives a more accurate round-trip time being calculated
■ provides network latency and network loss information

Answer 163

A

■ Finds the device’s name

Answer 164

A

Finds a domain name from the IP address

Answer 165

A

○ Checks for open ports on a given client
○ Looks for ports or connections on listening mode
○ Netstat is helpful for malware removal or threat hunting against bad actors

Answer 166

A

○ Set of policies across all users on a given system or across all systems on a given
domain
○ gpupdate
○ gpresult

Answer 167

A

■ Used for larger environments

Answer 168

A

■ Used in a single computer environment

Answer 169

A

■ Represent the two different methods for organizing workstations inside
of a Windows-based computer network
■ When dealing with a workgroup, you’re dealing with a decentralized
model of administration, so there is no main computer in control
■ Workgroups are better used with smaller sized networks, all on the same
network of less than about 15 to 20 computers
■ Domains are used for large scale networks, one or more computers
acting as a server, which makes it easier to automatically connect to the
network from anywhere
■ Domains can support hundreds of thousands of computers on a single
domain

Answer 170

A

● Workgroup
○ Decentralized model
● Domain
○ Centralized architecture

Answer 171

A

○ An entire suite of commands

Answer 172

A

○ Sharing a printer over a network is easier in a small office environment

Answer 173

A

○ macOS generally has same features and functionality like Windows

Answer 174

A

A backup feature in macOS

Answer 175

A

■ macOS file management app (file explorer)

Answer 176

A

Used for managing applications from the desktop (taskbar)

Answer 177

A

■ Search function

Answer 178

A

macOS installer that supports complex setup tasks using a setup wizard

Answer 179

A

macOS installer for copying self-contained apps to an app folder

Answer 180

A

○ Enables the user to set up multiple virtual desktops with different sets of
applications and backgrounds

Answer 181

A

○ Disk encryption tool that encrypts the data that’s stored on the hard drive or
solid-state device

Answer 182

A

○ Utility that allows to access an optical disc drive over the network
○ Most Mac computers don’t have an internal optical drive
○ One requires CD or DVD drive installed on the network

Answer 183

A

○ Application designed to help manage passwords for all the different accounts

Answer 184

A

○ Apple’s online storage solution for all its users

Answer 185

A

○ Provides a centralized and standard location for mail, contacts, calendar, photos,
notes, reminders, and more

Answer 186

A

■ Apple ID
● Account with Apple used across the entire Apple ecosystem

Answer 187

A

■ Central area that Apple and developers can use to distribute free and
paid apps

Answer 188

A

○ Antivirus
○ Backups
○ Updates
○ Force quit apps
○ Always have antivirus or antimalware on the system
○ Mac doesn’t run the same types of software as Windows
○ There is no built-in antivirus software for Mac system

Answer 189

A

■ Supervises the use of macOS systems, restricts which apps can be
installed, locates any systems, and ensures they’re up to date with the
latest security patches

Answer 190

A

■ Used for listing file system objects

Answer 191

A

■ Used to print the current directory

Answer 192

A

■ Used to change the directories

Answer 193

A

■ Used to move files from one location to another

Answer 194

A

■ Used to copy files from one location to another

Answer 195

A

■ Used to delete files
■ The mv, cp, and rm commands are used in both files and directories in
Linux

Answer 196

A

■ Used to display the amount of free disk space

Answer 197

A

■ Used to estimate the file space usage

Answer 198

A

■ Easy to use command line text editor

Answer 199

A

■ Old command that supports modal editing

Answer 200

A

Supports normal, visual, insert, and command line mode

Answer 201

A

Text editor that provides less features and less complexity

Answer 202

A

Used to create, view, or concatenate files

Answer 203

A

Used to search the file system or directory

Answer 204

A

■ Used to search for characters within the specified file using regular
expressions

Answer 205

A

■ Used to switch users

Answer 206

A

■ Used to switch to the root user

Answer 207

A

■ Used to modify the user’s account

Answer 208

A

■ Used to delete a user’s account

Answer 209

A

■ Used to change or reset the password of the user’s account

Answer 210

A

■ Used to add a new group

Answer 211

A

■ Used to modify a group

Answer 212

A

■ Used to delete a group

Answer 213

A

■ Used to change the access permissions

Answer 214

A

Used to change the owner

Answer 215

A

■ Used to install and remove software on Debian

Answer 216

A

Used to install and remove software on Red Hat

Answer 217

A

■ Updated version of yum command and used to install and remove
software on Red Hat

Answer 218

A

Low-level tool that is used to install and remove software on Red Hat

Answer 219

A

■ Used to display a list of currently running processes

Answer 220

A

Task manager that is used to display information about CPU and memory

Answer 221

A

■ Used for configuring network interfaces

Answer 222

A

Used to test a host’s reachability on an IP-based network

Answer 223

A

■ Used to display the route and transmit time across an IP-based network

Answer 224

A

■ Used to query the DNS to get information about the different DNS
records

Answer 225

A

■ Used for accessing and searching online reference manuals

Answer 226

A

■ Written after the name of a command to give information on how to use
a specific command

Answer 227

A

Cross-platform file sharing protocol that supports the SMB

Answer 228

A

■ Used for listing file system objects

Answer 229

A

Used to print the current directory

Answer 230

A

■ Used to change the directories

Answer 231

A

■ Used to move files from one location to another

Answer 232

A

■ Used to copy files from one location to another

Answer 233

A

■ Used to delete files

Answer 234

A

■ Used to display the amount of free disk space
■ Shows
● Free space
● Filesystem
● Total size
● Space used
● % used
● Mount point

Answer 235

A

■ Used to estimate the file space usage
■ The du command shows the disk usage and how the device is used

Answer 236

A

■ nano
● Easy to use command line text editor
■ pico
● Text editor that provides less features and less complexity

Answer 237

A

■ vi
● Old command that supports modal editing
■ vim
● Supports normal, visual, insert, and command line mode

Answer 238

A

○ The cat command is used for concatenating or displaying the contents of a file to
the screen

Answer 239

A

■ Search for a file
■ Used to search the file system or directory

Answer 240

A

■ Used to search for characters within the specified file using regular
expressions
■ Search for content within a file

Answer 241

A

■ Used to switch users

Answer 242

A

■ Used to switch to the root user

Answer 243

A

Used to modify the user’s account

Answer 244

A

■ Used to delete a user’s account

Answer 245

A

Used to change or reset the password of the user’s account

Answer 246

A

■ Used to add a new group

Answer 247

A

■ Used to modify a group

Answer 248

A

■ Used to delete a group

Answer 249

A

■ Used to change the access permissions

Answer 250

A

Used to change the owner

Answer 251

A

Used to install and remove software on Debian

Answer 252

A

Used to install and remove software on Red Hat

Answer 253

A

■ Updated version of yum command and used to install and remove
software on Red Hat

Answer 254

A

Low-level tool that is used to install and remove software on Red Hat

Answer 255

A

○ PS and top are the two commands you should be aware of for resource
management

Answer 256

A

■ Used to display a list of currently running processes

Answer 257

A

■ Task manager that is used to display information about CPU and memory

Answer 258

A

■ Used for configuring network interfaces

Answer 259

A

■ Used to test a host’s reachability on an IP-based network

Answer 260

A

Used to display the route and transmit time across an IP-based network

Answer 261

A

■ Used to query the DNS to get information about the different DNS
records

Answer 262

A

■ Used for accessing and searching online reference manuals

Answer 263

A

■ Written after the name of a command to give information on how to use
a specific command

Answer 264

A

■ Debian based systems use the apt-get command
■ Red Hat based systems use the rpm, yum, or dnf commands

Answer 265

A

■ Linux and Windows malware do not affect each other’s systems
■ There are Linux viruses
■ Linux is more secure, but it isn’t risk-free

Answer 266

A

■ Options
● Clam AntiVirus
● Snort
● Any IDS/IPS

Answer 267

A

■ Use a Task Scheduler
■ Cron is a Linux scheduling service
■ Backups will generally result in a tar or gzip package

Answer 268

A

■ Integrate Linux into a Windows environment
○ Install samba on a Linux device to communicate with a Windows host or server

Answer 269

A

Person or event with the potential to have an impact on a valuable
resource

Answer 270

A

■ Quality within a resource or its environment that might allow a threat to
be realized

Answer 271

A

■ The likelihood of a threat exploiting a vulnerability
■ A threat without a matching vulnerability has no risk

Answer 272

A

■ Protects data and information from unauthorized access
■ Protects the data itself

Answer 273

A

■ Protects the systems that hold and process critical data
■ Protects the entire system in which the data exists

Answer 274

A

■ Threats that originate within the organization

Answer 275

A

Threats that come from outside of the organization

Answer 276

A

■ How secure the information is
■ Relies on
● Physical protection
● Electronic protection
○ Encryption

Answer 277

A

■ How correct the information is?
■ Has it been modified during transit, retrieval, or storage

Answer 278

A

■ Tools
● Hashing
○ Put data through a one-way encryption algorithm that
gives us a unique digital fingerprint
● Checksums
○ Used for data in transit

Answer 279

A

■ How much uptime is the system providing?
■ Best method to accomplish availability is a redundant system design
■ Have good backup strategies and disaster recovery plans
■ Relies on Redundancy

Answer 280

A

■ Always a trade-off
■ As security increases, usability often decreases

Answer 281

A

■ Flaw or weakness within a system that can be exploited

Answer 282

A

■ Any person or organization that intentionally causes harm

Answer 283

A

■ System that is not on the baseline of what is approved by the
organization

Answer 284

A

● A set of recommendations for deploying a computer in a
hardened configuration

Answer 285

A

■ Systems without patches and updates
■ Unpatched systems are vulnerable to exploits that the available patches
mitigate

Answer 286

A

■ Systems not protected by any antivirus, anti-malware, or firewall
■ Operating systems often have a firewall built into them

Answer 287

A

■ An operating system that the manufacturer stops providing security
patches for
■ Not protected against new vulnerabilities (those that are not already
patched)
■ An EOL operating system should be upgraded to a newer system if
possible

Answer 288

A

● Windows XP
● Windows Vista
● Windows 7

Answer 289

A

■ Bring Your Own Device
■ A policy that allows users to use their personal devices in the office
environment
■ Can lead to unpatched or unprotected system being connected to the
system

Answer 290

A

■ Vulnerability that is discovered or exploited before the vendor can issue a
patch to fix it
○ Bug Bounty programs used to find zero-day vulnerabilities

Answer 291

A

■ Is an unknown exploit that exposes a previous unknown vulnerability

Answer 292

A

■ The malware used to exploit the vulnerability

Answer 293

A

■ Used to describe an attack that attempts to make a computer or server’s
resources unavailable

Answer 294

A

■ Specialized type of DoS that attempts to send more packets to a server or
host

Answer 295

A

● Happens when too many pings (ICMP echo) are being sent

Answer 296

A

● Attacker initiates multiple TCP sessions but never completes the
three-way handshake

Answer 297

A

● Flood Guards
● Time Outs
● Intrusion Prevention

Answer 298

A

■ Attack that exploits a security flaw to permanently break a networking
device by re-flashing its firmware
■ Rebooting won’t bring the system back online

Answer 299

A

■ Attack that creates many processes to use up the available processing
power of a computer
■ Not a worm because it doesn’t infect the programs

Answer 300

A

■ Uses lots of machines to attack a server to create a DoS

Answer 301

A

■ Allows an attacker to send packets to flood the victim’s website to
initiate DNS requests

Answer 302

A

● Identifies attacking IP addresses and routes them to a nonexistent server through the null interface

Answer 303

A

● Identifies and responds to small-scale DoS attacks

Answer 304

A

● Scales up when demand increases

Answer 305

A

● Cloudflare
● Akamai

Answer 306

A

○ Occurs when an attacker masquerades as another person by falsifying their
identity

Answer 307

A

■ Modifies the source address of an IP packet to hide the identity of the
sender or impersonate another client
■ Is focused on Layer 3 of the OSI model

Answer 308

A

■ Changing the MAC address to pretend the use of a different network
interface card or device
■ MAC Spoofing will allow an attacker to get around MAC Filters
● MAC filters rely on lists of known MAC addresses

Answer 309

A

■ Sending falsified ARP messages over a local area network
■ Can be used as a precursor to other attacks

Answer 310

A

■ When an attacker puts themselves between the victim and the intended
destination
■ Also known as a Man-in-the-Middle attack

Answer 311

A

■ Can be done by
● ARP poisoning
● DNS poisoning
● Introducing a rogue WAP
● Introducing a rogue hub or switch

Answer 312

A

■ Occurs when valid data is captured by the attacker and is then repeated
immediately or delayed, and then repeated

Answer 313

A

■ Occurs when the attacker inserts themselves in between two hosts

Answer 314

A

○ Encryption makes it more difficult for an attacker to gain access to data

Answer 315

A

● Occurs when an attacker tricks the encryption application into
presenting the user with an HTTP connection instead of an HTTPS
connection

Answer 316

A

● Occurs when an attacker attempts to have a client or server
abandon a higher security mode in favor of a lower security mode
● Affect more than just SSL and TLS
○ Can be used with any type of protection or encryption

Answer 317

A

○ An attack consisting of the insertion or injection of an SQL query via input data
from the client to a web application
○ Prevented through input validation and using least privilege when accessing a
database
○ Look for OR 1=1 as a sign of a SQL attack

Answer 318

A

○ Is a form of Injection Attack
■ An attack that inserts additional information or code through data input
from a client to an application
■ Can use
● SQL
● HTML
● XML
● LDAP

Answer 319

A

○ Occurs when an attacker embeds malicious scripting commands on a trusted
website

Answer 320

A

● Attempts to get data provided by the attacker to be saved on the
web server by the victim

Answer 321

A

Attempts to have a non-persistent effect activated by a victim
clicking a link on the site

Answer 322

A

● Document Object Model (DOM)
● Attempt to exploit the victim’s web browser

Answer 323

A

■ output encoding
■ proper input validation

Answer 324

A

■ Occurs when an attacker forces a user to execute actions on a web server
for which they are already authenticated
■ Prevention methods
● Tokens
● Encryption
● XML file scanning
● Cookie verification

Answer 325

A

■ Used to test the strength of passwords to ensure password policies are
being followed

Answer 326

A

■ Uses comparative analysis to break passwords and systematically
continues guessing until the password is determined
■ Examples
● Cain & Abel
● John the Ripper

Answer 327

A

● Occurs when a weak password is simply figured out by a person

Answer 328

A

● Method where a program attempts to guess the password by
using a list of possible passwords

Answer 329

A

● Method where a program attempts to try every possible
combination until it cracks the password
● Increasing complexity exponentially increases the time required
to brute-force a password

Answer 330

A

● Comparing a precomputed encrypted password to a value in a
lookup table

Answer 331

A

● Attempts to crack a password by threatening or causing a person
physical harm to make them tell you the password

Answer 332

A

○ An employee or other trusted insider who uses their authorized network access
in unauthorized ways to harm the company

Answer 333

A

■ Specific type of malware that is tied to either a logical event or a specific
time

Answer 334

A

○ Software that is designed to infiltrate and damage a system
■ Viruses, Worms, and Trojans

Answer 335

A

■ Require user action to reproduce and spread

Answer 336

A

○ Viruses that are stored in the first sector of a hard drive
and are loaded into memory upon boot

Answer 337

A

○ Virus embedded into a document and is executed when
the document is opened by the user

Answer 338

A

○ Program viruses seek out executables or application files
to infect

Answer 339

A

○ Virus that combines boot and program viruses to first
attach itself to the boot sector and system files before
attacking other files on the computer

Answer 340

A

○ This virus is going to use a cipher to encrypt the contents
of itself to avoid detection by any antivirus software

Answer 341

A

○ Advanced version of an encrypted virus that change its
code each time it’s executed by altering the decryption
module for it to evade detection

Answer 342

A

○ Viruses that can rewrite themselves entirely before it
attempts to infect a file

Answer 343

A

○ Stealth viruses are a category of a virus protecting itself

Answer 344

A

○ Virus that has a layer of protection to confuse a program
or a person who’s trying to analyze it

Answer 345

A

○ Hoax virus tries to trick a user to infect their own machine

Answer 346

A

■ Malicious software, like a virus, but can replicate itself without any user
interaction
■ Worms can spread and replicate fast

Answer 347

A

Are a piece of malicious software that are disguise as a piece of harmless
or desirable software

Answer 348

A

Provides the attacker with remote control of a victim computer

Answer 349

A

○ Malware that restricts access to a victim’s computer system until a ransom is
received
○ Keep backups of all the systems and files
○ Ransomware uses a vulnerability in your software to gain access and then
encrypts your files

Answer 350

A

○ Malware that secretly gathers information about the user without their consent
■ Adware
● Displays advertisements based upon its spying on you
■ Grayware
● Software that isn’t benign nor malicious and tends to behave
improperly without serious consequences

Answer 351

A

○ Software designed to gain administrative level control over a system without
detection

Answer 352

A

■ DLL Injection
● Malicious code is inserted into a running process on a Windows
machine by taking advantage of Dynamic Link Libraries that are
loaded at runtime

Answer 353

A

■ An attack that relies on compromising the kernel-mode device drivers
that operate at a privileged or system level

Answer 354

A

■ A piece of software code that is placed between two components to
intercept calls and redirect them

Answer 355

A

○ A collection of compromised computers under the control of a master node
○ Botnets can be utilized in other processor intensive functions and activities

Answer 356

A

■ Occurs when many machines target a single victim and attack them at the
exact same time

Answer 357

A

○ Your computer might have been infected if it begins to act strangely
○ Hard drives, files, or applications are not accessible anymore
○ Strange noises
○ Unusual error messages
○ Display looks strange
○ Jumbled printouts
○ Double file extensions are being displayed, such as textfile.txt.exe
○ New files and folders have been created or files and folders are
missing/corrupted
○ System Restore will not function

Answer 358

A

○ Scan the computer
○ Identify the symptoms of a malware infection
○ Quarantine the infected systems
○ Disable System Restore
○ Remediate the infected system
○ Schedule automatic updates and scans
○ Enable System Restore and create a new restore point
○ Provide end user security awareness training
○ If a boot sector virus is suspected, reboot the computer from an external device
and scan it
○ Remove the hard drive from the victimized machine, connect it to a clean
workstation as a secondary drive, and then scan it

Answer 359

A

○ Continually doing your service packs and updates for your operating system
○ Have a good host-based Firewall
○ Worms, Trojans, and Ransomware are best detected with anti-malware solutions
○ Re-image the machine from a known good baseline
○ Verify your email servers aren’t configured as open mail relays or SMTP open
relays
○ Remove email addresses from website
○ Use allowlists and blocklists
○ Train and educate end users
○ Update your anti-malware software automatically and scan your computer
○ Update and patch the operating system and applications regularly
○ Educate and train end users on safe internet surfing practices

Answer 360

A

■ Scanners can detect a file containing a rootkit before it is installed

Answer 361

A

○ Broad range of malicious activities accomplished through human interactions

Answer 362

A

■ Any attempt to manipulate users to reveal confidential information or
perform actions detrimental to a system’s security
■ End users and employees are the weakest link in an organization’s
security

Answer 363

A

■ A social engineering attack where the malicious actor communicates with
the victim from a supposedly reputable source to lure the victim into
divulging sensitive information
■ 60-70% response rate

Answer 364

A

Uses the same technology and techniques but is a more targeted version
of phishing

Answer 365

A

Focused on key executives within an organization or other key leaders,
executives, and managers in the company

Answer 366

A

■ The text message service component on cellphones, smartphones,
tablets, and other mobile devices

Answer 367

A

■ A form of text messaging that also allows pictures, sounds, or videos to
be sent

Answer 368

A

■ Occurs when the message is being communicated to the target using the
voice functions of a telephone

Answer 369

A

Occurs when an attacker takes over a high-level executive’s email
account and orders employees to conduct tasks

Answer 370

A

■ Tricks users into divulging private information by redirecting a victim to a
website controlled by the attacker or penetration tester

Answer 371

A

○ The abuse of electronic messaging systems, most commonly through email
○ Spammers often exploit a company’s open mail relays to send their messages
○ CAN-SPAM Act of 2003

Answer 372

A

○ The act of pretending to be someone else to gain access or gather information

Answer 373

A

■ Elicitation
● The ability to draw, bring forth, evoke, or induce information from
the victim

Answer 374

A

○ Train your employees not to fall for pretext and to not fill in the gaps for people
when they’re calling you or even in person

Answer 375

A

■ Any attempt to manipulate users into revealing confidential information
or performing other actions that are detrimental to that user or the
security of our systems
■ The weakest link is our end users and employees

Answer 376

A

■ When an attacker attempts to enter a secure portion of a building by
following an authorized person into that area, without their knowledge

Answer 377

A

Like tailgating, but happens with the knowledge or consent of the
employee

Answer 378

A

■ Using direct observation to obtain information from an employee
■ Not as obvious as standing over your shoulder, but it can be a quick
glance at your screen

Answer 379

A

■ Looking in garbage or recycling bins for personal or confidential
information

Answer 380

A

○ A fraudulent Wi-Fi access point that appears to be legitimate but is set up to
eavesdrop on your wireless communication

Answer 381

A

■ Exploits the behavior of Wi-Fi devices due to a lack of access point
authentication protocols being implemented

Answer 382

A

■ A list of the SSIDs of any access point the device has previously connected
to and will automatically connect to when those networks are in range

Answer 383

A

■ A web page that the user of a public-access network is obligated to view
and interact with before access is granted

Answer 384

A

■ Software application that protects a single computer from unwanted
Internet traffic
■ Host-Based Firewall

Answer 385

A

○ Windows Firewall
○ PF and IPFW
○ iptables
○ Many anti-malware suites contain software firewalls
○ It is better to run a personal software-based firewall and a network-based
firewall to provide you with two layers of protection

Answer 386

A

○ I can install all the technology I want, but if I don’t fix the user, it’s all going to be
for nothing
○ Train users how to encrypt emails and data
○ Follow organizational data handling and disposal policies

Answer 387

A

■ Clean Desk Policy
● By end of day, employees clean their desks and leave nothing out
that may be taken as a password or a PIN

Answer 388

A

Implemented to increase physical security posture

Answer 389

A

■ Implemented through hardware or software to prevent or restrict access
● Auditing
○ One-time
● Monitoring
○ Ongoing

Answer 390

A

■ Implemented to manage the organization’s personnel and assets
● Data classification and labeling
● Personnel supervision
● Security awareness training

Answer 391

A

■ Designed in different formats, including see-through or not
■ See-through fences allow outsiders to see what’s inside
■ Non-see-through fences prevent employees and guards from seeing
incoming threats
■ Fences keep people away from areas that are under your control

Answer 392

A

■ Type of barricade used to prevent terrorist attacks
■ Think about the type of aesthetic fence and bollards to install
■ Make sure that it is still friendly and inviting

Answer 393

A

■ Use well-designed lighting around your perimeter
● Always ON
● Motion sensor

Answer 394

A

■ Protect the outside or inside of the building

Answer 395

A

■ Used inside or outside of a building using cameras and CCTV
● Motion
● Sound
● Light

Answer 396

A

■ Alarm system that sounds anytime the circuit is open or closed

Answer 397

A

■ Allows to play motion sensor in different areas
● Proximity
○ Alarm that turns off when there is a movement in one of
the tagged objects within the area
● Duress
○ Alarm that can be triggered by someone when there is a threat

Answer 398

A

■ Type of metal detector that is deployed at airports and public buildings
■ Walk-through magnetometer detects the presence of metal

Answer 399

A

■ Key Operated
● Uses a key to lock or unlock the door
■ Mechanical Operated
● Uses a PIN to lock or unlock the door
● Mechanically operated lock is usually referred to as a cipher lock
■ Electronic Operated
● Requires a PIN entered on an electronic keypad to unlock
○ Mechanical
○ No power needed
○ Electronic
○ Needs power

Answer 400

A

● Uses a token to unlock the door
● Badge reader can be combined with two-factor authentication

Answer 401

A

● Uses biometric data to unlock the door
○ Fingerprint readers are considered a hygiene issue
○ Palm Print Scanner
■ Uses a camera to scan the palm print by using
infrared lights
■ Palm print scanners are much larger in size
○ Retina Scanner
■ Uses infrared light that is shown into an eye

Answer 402

A

■ Prevents theft and unauthorized physical access to servers, network
appliances
● Lockable Rack Cabinet
○ Controls access to servers, switches, and routers installed
in standard networking racks
■ Chassis Locks
■ Faceplates
○ Lockable rack cabinet protects all the devices in one server
rack
● Kensington Lock
○ A cable that uses a tie to secure smaller devices

Answer 403

A

Serves to limit the people that go in or out of an organization

Answer 404

A

■ Badge readers can be used to log in to a computer
● Magnetic Strip
● Smart Card
● RFID
■ Badge reader systems use contact-based badge reading

Answer 405

A

Uses the lowest level of permissions needed to complete a job function

Answer 406

A

● Access control method where access is determined by the owner
of the resource
● Every object in a system must have an owner
● Each owner must determine the access rights and permissions for
each object

Answer 407

A

● Access control policy where the computer system decides who
gets access
○ Unclassified
○ Confidential
○ Secret
○ Top secret
● MAC is reserved for highly classified information within the
military

Answer 408

A

● Access model that is controlled by the system that focuses on a
set of permissions versus an individual’s permissions
● Creating groups makes it easy to control permissions based
around actual job functions

Answer 409

A

■ User who is not a normal user and not a normal administrator

Answer 410

A

■ Security framework that requires the users to be authenticated,
authorized, and validated
● Reexamine all default access controls
● Employ a variety of prevention techniques and defense in depth
● Enable real-time monitoring and controls to identify and stop
malicious activity
● Ensure the network’s zero-trust architecture aligns with a broader
security strategy

Answer 411

A

■ Uses two or more factors to prove a user’s identity
● Knowledge
○ Something you know
● Ownership
○ Something you have
● Characteristic
○ Something you are
● Location
○ Somewhere you are
● Action
○ Something you do

Answer 412

A

○ High security systems often use multifactor authentication
○ Implement 2FA or MFA that relies on OOB authentication system

Answer 413

A

■ Computes password from a shared secret and the current time

Answer 414

A

■ Computes password from a shared secret and is synchronized across the
client and the server

Answer 415

A

■ Relies on an identity signal from the same system requesting the user
authentication

Answer 416

A

Uses a separate communication channel to send the OTP or PIN

Answer 417

A

Tracking
■ Controlling
■ Securing

Answer 418

A

Policies and tools

Answer 419

A

■ Technical controls
● Application Control
● Passwords and passcode functionality
● MFA Requirement
● Token-based Access
● Patch Management
● Remote Wipe

Answer 420

A

■ Used to send remote commands to a mobile device from an MDM
solution to delete its data settings
■ A device must have an Internet connection to receive the remote wipe
■ Incorrect password or passphrase entered too many times
■ Device tries to connect to a network and does not meet the baseline
requirements

Answer 421

A

Updates the baseband of the radio modem used for cellular, Wi-Fi,
Bluetooth, NFC, and GPS connectivity

Answer 422

A

■ Allows to get information from the network about the systems, users,
and computers
● Users
● Groups
● Computers
■ Use Active Directory inside Windows-based networks for high levels of
security

Answer 423

A

Allows to easily assign permissions to a set of users or workstations
■ Groups have different permissions applied using ACLs, group policies, and
login scripts

Answer 424

A

Way of dividing the domain into different administrative realms

Answer 425

A

■ Allows to configure computer settings and user profile settings for the set
of users
■ Settings can be templated

Answer 426

A

Private drive that is mapped to a network share

Answer 427

A

■ Allows to change the target of a personal folder

Answer 428

A

■ Same encryption key is used by the access point and the client

Answer 429

A

■ Original 802.11 wireless security standard that claims to be as secure as a
wired network
■ WEP’s weakness is its 24-bit IV (Initialization Vector)

Answer 430

A

■ Replacement for WEP, which uses TKIP, Message Integrity Check (MIC),
and RC4 encryption
■ WPA was flawed, so it was replaced by WPA2

Answer 431

A

■ 802.11i standard to provide better wireless security featuring AES with a
128-bit key, CCMP, and integrity checking
■ If we make operations easier, then security is reduced

Answer 432

A

■ Automated encryption setup for wireless networks at a push of a button,
but is severely flawed and vulnerable
■ Always disable WPS
■ Encryption and VPNs are always a good idea

Answer 433

A

○ Wi-Fi Protected Access 3 (WPA3)
○ Galois Counter Mode Protocol (GCMP)
○ Management protection frames

Answer 434

A

○ Latest and most secure version of wireless network encryption currently
available
■ Updated cryptographic protocols
● Enterprise
○ 192-bit
● Personal
○ 192-bit or 128-bit

Answer 435

A

○ “Enhanced open”
■ Opportunistic Wireless Encryption (OWE)

Answer 436

A

○ Simultaneous authentication of equals (SAE)
■ A secure password-based authentication and password authenticated key
agreement that relies on forward secrecy

Answer 437

A

○ Forward Secrecy
■ Assures the session keys will not be compromised even if the long-term
secrets used in the session key exchange have
■ AP and client use a public key system to generate a pair of long-term keys
■ AP and client exchange a one-time use session key
■ AP sends client messages and encrypts them using the created session
key
■ Client decrypts received messages using the same one-time use session
key
■ Process repeats for each message being sent, starting at Step 2

Answer 438

A

■ Cross-platform protocol that authenticates and authorizes users to
services, and accounts for their usage
● Supplicant
● Authenticator
● Authentication server

Answer 439

A

■ Cisco-proprietary protocol that provides separate authentication,
authorization, and accounting services

Answer 440

A

Peer-to-peer protocol created as a next-generation version of RADIUS

Answer 441

A

■ Cross-platform protocol that centralizes info about clients and objects on
the network

Answer 442

A

■ Enables users to authenticate once and receive authorizations for
multiple services across the network

Answer 443

A

■ Uses symmetric encryption and the Key Distribution Center to conduct
authentication and authorization functions

Answer 444

A

■ Used for port-based authentication on both wired and wireless networks
■ Utilize 802.1x as part of your defense

Answer 445

A

○ Utilizes simple passwords and the challenge handshake
authentication process to provide remote access
authentication

Answer 446

A

○ Uses public key infrastructure with a digital certificate
being installed on both the client and the server

Answer 447

A

○ Requires a digital certificate on the server and a password
on the client for its authentication

Answer 448

A

○ Uses a protected access credential to establish mutual
authentication between devices

Answer 449

A

○ Uses server certificates and Microsoft’s Active Directory
databases to authenticate a client’s password

Answer 450

A

○ A proprietary protocol that only works on Cisco-based
devices

Answer 451

A

■ The name of the wireless network
● Name the network after something that is easy to recognize
○ Do not use any personally identifiable information
● Random naming scheme
○ Many textbooks recommend disabling the broadcast of
the SSID

Answer 452

A

■ Disabling the broadcast SSID just makes it harder for your authorized
users to be able to connect to the network
■ Enabling encryption can give you a lot of security
■ Never use WPA or WEP
■ Enable wireless network encryption by configuring your wireless access
point
■ A strong passphrase will serve as the password or symmetric key for this
encryption

Answer 453

A

■ Allows someone who is visiting your area to connect to your wireless
access point and access the Internet
■ Disable guest access

Answer 454

A

The most distance between channels 1-11 are channels 1, 6, and 11
○ With 5 GHz and 6 GHz, you can use the auto channel selection

Answer 455

A

■ Used by mobile devices to make a connection to high-speed Internet
■ WPA3 is the highest level of encryption available for mobile Wi-Fi
currently

Answer 456

A

■ Used by mobile devices to connect peripherals to the device
■ Bluetooth requires two devices to make a connection or link

Answer 457

A

○ Check specifications to see if the device uses at least AES encryption with a
strong key
○ Software firewalls are common for larger devices, but not so much for mobile
devices
○ The firewall must have root or administrative privileges on the mobile device to
successfully protect it
○ A VPN connection between a mobile device and a centralized server is safer
○ Remote backups automatically go to places like iCloud for Apple, Google Sync, or
OneDrive from Microsoft
○ Always ensure you have secured the wireless connectivity first, then implement
a mobile firewall

Answer 458

A

■ Someone can simply take the mobile device and swipe the screen open
to unlock it, without using anything to secure it

Answer 459

A

■ Personal Identification Number (PIN Code)
● Normally 4-8 digits long, depending on your smartphone or device
● PIN codes are easy to guess as there are only 10,000 possible
codes for a four-digit PIN
● Shoulder surfing attacks are easy if you use a PIN code as it’s just a
few digits to remember
● PIN codes are only numbers, whereas passcodes are numbers,
letters, and symbols

Answer 460

A

■ Passwords can also be easily used by others, due to shoulder surfing and
other attacks
■ Wrong passcode entered 10 times can lock you out and make you wait 30
minutes before you’re able to try again
■ Remote wipe, wipes of all data after 10 failed attempts to login

Answer 461

A

The screen shows you nine different dots for you to swipe and make a
pattern with
■ Pressing and removing your finger off the touch scanner several times is
how you set up Touch ID

Answer 462

A

■ Touch ID has a fail rate of about1 in every 50,000 attempts
■ Face ID has a fail rate of about 1 in every 1,000,000 attempts
■ Both are much more secure than a PIN or password
■ Smartphones like to use biometrics first and then PIN or passcode, if you
have all that set up
■ Face ID wasn’t helpful in 2020 when everyone was wearing masks, so the
PIN or password fallback is very helpful

Answer 463

A

○ Ensure your mobile device is patched and updated
○ Only install apps from the official App Store or Play Store
○ Do not jailbreak/root device
○ Don’t use custom firmware/ROM
○ Only load official store apps
○ Always update your software

Answer 464

A

○ Always ensure your device is backed up
○ Don’t try to recover your device alone if it is stolen

Answer 465

A

■ Requires a PIN or a password before someone can use the device

Answer 466

A

■ Allows to remotely erase the contents of the device to ensure that no
information can be recovered

Answer 467

A

○ Only install apps from the official mobile stores
○ Transport Layer Security (TLS)
■ Put an encryption layer and a tunnel between your device and the server
to ensure you have confidentiality

Answer 468

A

■ Centralized software solution that allows system administrators to create
and enforce policies across its mobile devices
■ Turn location services off to ensure privacy

Answer 469

A

■ Embedding of the geolocation coordinates into a piece of data, such as a
photo
■ Geotagging should be considered when developing your organization’s
security policies

Answer 470

A

■ Purchased by the company and only used by the employee for workrelated purposes
● Most secure
● Most restrictive
● Most expensive

Answer 471

A

■ Company provides a device used for work and/or personal use by
employees

Answer 472

A

■ Allows employees to choose device from an approved list of vendors or
devices

Answer 473

A

■ Allows employees to bring their own devices, and connect to the
corporate network
■ BYOD is the most difficult to secure

Answer 474

A

■ Creates a clear separation between work and personal data on a device

Answer 475

A

■ Centralized software solution for remote administration and
configuration of mobile devices
■ MDM can prevent certain applications from being installed on the device
■ Ensure your organization has a good security policy for mobile devices

Answer 476

A

○ Update your device to the latest software
○ Install Antivirus
○ Train users on proper security and use of their device
○ Only install apps from the official app stores
○ Do not jailbreak or root your devices
○ Only use Version 2 SIM cards for your devices
○ Turn off all unnecessary features on your device
○ Turn on encryption for voice and data
○ Use strong passwords or biometrics
○ Don’t allow BYOD
○ Ensure your agency has a good security policy for mobile devices

Answer 477

A

○ iPadOS will be like iOS and similar but not quite the same with Android
○ Remember to set up how you want to use your device with locking, unlocking,
password, Touch ID, Face ID, and more

Answer 478

A

○ S in IoT stands for security
○ Most IoT devices uses an embedded version of Linux or Android as their OS
○ Be careful in which exploits you since you can inadvertently cause the device to
go offline, crash or malfunction

Answer 479

A

○ Many Manufacturers uses outdated or insecure hardware components
■ Insecure defaults
■ Hard-coded configurations
■ Cleartext communication

Answer 480

A

○ Attackers also monitors Bluetooth frequencies being transmitted and conduct
eavesdropping
■ Data modification
■ Data exfiltration

Answer 481

A

■ Uses Local Security Authority (LSA) to compare the submitted credentials
■ Local sign-in is also known as interactive login

Answer 482

A

■ Uses Kerberos to perform network authentication

Answer 483

A

■ Allows users to access the local network by using a VPN or a web portal
(SSL/TLS)

Answer 484

A

■ Oldest type of authentication that uses single-factor authentication
■ Knowledge-based factor

Answer 485

A

Allows the user to configure an alternate means of authentication
■ Windows Hello PIN can be used to enter the system and authenticate
■ Windows Hello subsystem is considered more secure
■ Windows Hello Fingerprint uses biometric authentication
■ Windows Hello Face uses facial recognition

Answer 486

A

■ Users can authenticate on the device or network to gain access to
multiple apps or services
■ Using SSO is considered more secure than having different accounts

Answer 487

A

■ Account that exists on a single workstation or computer
● Security Account Manager (SAM)
○ HKEY_LOCAL_MACHINE registry hive
■ Local account cannot be used to log into different computers

Answer 488

A

Created through an online cloud-based portal at account.microsoft.com
■ Microsoft account can be synchronized between devices using the same
portal
■ Domain-based users can also create an account as part of the domain
environment

Answer 489

A

■ Able to change their own settings
■ When creating a new user on a system, it should be placed into the
standard user group

Answer 490

A

■ Gives additional security permissions
■ By default, the first user on a system is placed in the Administrator group

Answer 491

A

■ Account is disabled and gives a higher level of security
■ Guest accounts are disabled on Windows 10 and 11

Answer 492

A

■ Gives the user an intermediate permission level, but less than an
administrator
■ Power user group has the same permission level as the standard user
group
■ Administrator mode works at a higher level of permissions that can cause
a lot of system damage

Answer 493

A

■ Windows security feature used to protect the system against malicious
programs, scripts, and attacks
■ Administrator runs a program using the user credentials, not the
administrative credentials
■ Click the Change Account Type button within UAC
■ UAC settings can be configured from “always notify” to “never notify”
■ Change the UAC configuration in the control panel and select “user
account control” settings

Answer 494

A

■ NTFS feature that supports both file and folder encryption
■ Available only on
● Windows Pro
● Windows Education
● Windows Enterprise

Answer 495

A

● In storage on a
○ Hard Disk Drive
○ Solid State Device
○ Thumb Drive
○ Other storage device

Answer 496

A

● Being used across the network

Answer 497

A

● Data being used or processed by the system

Answer 498

A

■ encrypts the files using the user account password
■ is used only for certain files and folders

Answer 499

A

■ Full disk encryption product on all Windows editions except the Home
edition
■ Encrypts every file and folder on the drive automatically
■ All the volumes to be encrypted are on a fixed drive (internal drive)

Answer 500

A

■ Supports full disk encryption on removable data drives
■ Use a password or smart card to encrypt and decrypt the data

Answer 501

A

■ Uses file permissions on all files and folders
■ NTFS permissions can be assigned to a file or folder by using a user’s
account or group
■ Each object has an implicit deny preventing using a permission
■ Explicit permissions set an allow or deny action
■ Permissions are cumulative

Answer 502

A

■ Applies only to files that were shared using a network connection
■ Share permissions that are used in NTFS permissions will be applied
locally and over the network
■ Share permissions are set at the root of the share and its subdirectories
■ The most restrictive will apply to files and folders that are accessed over
the network

Answer 503

A

■ Happens with all the sub folders and files underneath that folder

Answer 504

A

■ A set of policies that determine what rights and privileges each user has
on a given computer or network

Answer 505

A

■ Give user the least number of permissions to be able to do their job
■ File permission control allows to change whether the user can read,
modify, or delete data file or folder

Answer 506

A

■ Set a good, long, and strong password for the administrator account
■ Disable the default admin account and create a new user account for
better security

Answer 507

A

■ Guest accounts represent a significant security vulnerability
■ Disable the guest account and create a regular user account

Answer 508

A

■ Restrict your login times if you want to have better security
■ Consider this based on your organization and the needs of your
employees

Answer 509

A

■ Account disabled
● The user cannot login until they contact help desk
●
■ 15-min cool off
● With the lockout timer, the user must wait 15 minutes to be able
to re-login

Answer 510

A

■ Every Windows user can log into multiple systems using the same
account in a domain environment
■ You can set the number of concurrent logins allowed
■ Limit of only one concurrent login

Answer 511

A

Find the right amount of time that makes it work

Answer 512

A

■ This can lead to a huge vulnerability
○ Disable autoplay or autorun to increase security

Answer 513

A

○ Complexity requirements
○ Expiration requirements
○ Use of passwords

Answer 514

A

■ Stored, transmitted, or processed in an unprotected format that anyone
can view and read

Answer 515

A

■ Scrambled up and unreadable to anyone without the proper encryption
or decryption key
■ Encryption is a form of risk mitigation

Answer 516

A

■ Location of data within a processing system

Answer 517

A

■ Any data stored in memory, a hard drive, or a storage device
● Full disk encryption
● Folder encryption
● File encryption
● Database encryption

Answer 518

A

■ Any data moving from one computer or system to another over the
network or within the same computer
● TLS or SSL
● IPsec or L2TP
● WPA2 with AES

Answer 519

A

■ Any data read into memory or is currently inside the processor and being
worked on or manipulated
● Data at rest
● Data in motion
● Data in processing

Answer 520

A

○ Anytime you’re not using a system, you should log off or lock your computer
○ A screensaver lock will lock your desktop after a period of inactivity
○ Secure personally identifiable information
○ Clean desk policy ensures everything on your desk is put away by end of day
○ Log off if you will be gone for more than a few minutes
○ Critical hardware like laptops must be in your possession or always properly
secured
○ You want to make sure that data is always protected

Answer 521

A

○ Asset disposal occurs whenever a system is no longer needed

Answer 522

A

■ Exposes the hard drive to a powerful magnetic field which in turn causes
previously written data to be wiped from the drive

Answer 523

A

■ Act of removing data in such a way that it cannot be reconstructed using
any known forensic techniques

Answer 524

A

■ Removal of data with a certain amount of assurance that it cannot be
reconstructed

Answer 525

A

■ Ensure all data remnants had been removed using overwriting
procedures

Answer 526

A

● Define which equipment will be disposed of
● Determine a storage location until disposal
● Analyze equipment to determine disposal method
● Sanitize the device and remove all its data
● Throw away, recycle, or resell the device

Answer 527

A

■ Sanitizing
■ Purging
■ Overwriting
■ Zeroing

Answer 528

A

● The process of destroying old data by writing over the location on
the hard drive or solid-state device with new data
● Forensic experts can recover some hidden data overwritten with a
series of ones and zeros
● Erasing and wiping don’t work as well with solid state devices
● Use Format from the Windows command line to erase the
contents of the hard drive

Answer 529

A

● Using a standard formatting procedure, you will have better data
destruction than you have with a simple erasing or wiping

Answer 530

A

● Procedure provided by the manufacturer which will reset the disk
back to its factory condition
○ Secure erase
○ Crypto erase
● If you don’t let this procedure finish, you’ll have a drive that is no
longer functional and no longer usable for anything

Answer 531

A

■ A particular type of hardware that will encrypt and decrypt the entire disk
■ By erasing the key, you have now made all the data on it unusable and
unreadable

Answer 532

A

■ Drilling
■ Incinerating
■ Shredding
■ Degaussing
● Exposing hard disk drives to powerful electromagnets that are
going to disrupt the magnetic patterns on those hard disks and
cause them to lose their state
● This does not work if you’re using optical media or solid-state
drives

Answer 533

A

○ Download from the official app stores either on Windows or Mac, or go to the
official websites

Answer 534

A

○ Extensions and plug-ins are often used interchangeably, but on different web
browsers they are used differently
○ Extensions

Answer 535

A

■ Work in the background to help you do things like video streaming

Answer 536

A

■ Change your browser’s look

Answer 537

A

■ Change your default search engine

Answer 538

A

■ keep things like document editing in your browser, even for offline use

Answer 539

A

○ Help you secure different passwords and stores them so you can use them easily
○ Memorizing a master passcode while the rest are saved for you is a much better
method than using the same password everywhere

Answer 540

A

○ You need to ensure that the website is secure before you access it and enter any
kind of personal details

Answer 541

A

○ A special mode in web browsers that ensures the caching features are not being
used
○ Even in private browsing, you are still being watched online

Answer 542

A

○ Some fake ads will bring you to fake websites to urge you to buy fake products
online
○ Ad blockers aren’t for being annoyed with advertising, rather because criminals
have been using ads to get to people

Answer 543

A

○ Cache allows you to view the same website multiple times without having to
redownload images or videos on that site
○ History keeps track of all websites you’ve been to, unless you clear it
○ All of this is stuff people can use to get an idea of what you do, so it is also a
good idea to clear your browser history sometimes

Answer 544

A

■ Different setting preferences
■ Doesn’t work across all Internet browsers
■ Keeps your personal and work life separate to avoid problems in the
future

Answer 545

A

■ Phone
■ Email
■ Chat
■ Ticket
○ Used to manage requests, incidents, and problems submitted by users

Answer 546

A

■ Name
■ Contact Details
■ User information
■ Device information

Answer 547

A

■ Requests
■ Incidents
● Happen one time or are isolated issues
■ Problems
● Are recurrent and happen to multiple users or devices with the
same characteristics
● A collection of incidents or recurrent issues
● Every organization configures different categories based on their
own business needs
● Problem description
○ Gather more details or information about the problem

Answer 548

A

■ Classifying tickets in a prioritized order
● Urgent
● High
● Medium
● Low
● Tier 3 (1-3%)
● Tier 2 (20-30%)
● Tier 1 (70-80%)
● Tier 0

Answer 549

A

■ Gives us more freedom and more ability to solve problems at an earlier
level

Answer 550

A

■ Problem Description
■ Progress Notes
■ Problem Resolution

Answer 551

A

■ Solution Articles
■ FAQs
■ Product Manuals
■ Tutorials
■ Videos
■ Demonstrations
■ Troubleshooting Guides

Answer 552

A

● Staff

Answer 553

A

● End-user

Answer 554

A

■ The kind of information should you include depends on your industry and
what you’re doing inside of your organization

Answer 555

A

■ Reduces the support workload
■ Provide good self-service
■ Lower the amount of work
■ Lower the product cost
■ Quick onboarding and training experience

Answer 556

A

○ Systematic approach to the governance and realization of value of things over
their life cycle
○ Establish good change management practices
○ Keep track of Warranties and Licenses

Answer 557

A

■ Tangible Assets
■ Intangible Assets

Answer 558

A

■ Development
■ Operation
■ Maintenance
■ Upgrade
■ Disposal

Answer 559

A

■ Allows the system to associate the user with the workstation that is
having the issue

Answer 560

A

■ Assigned to a particular device and labeled onto it
■ Having an asset tag with unique ID ensures having a good asset
governance

Answer 561

A

■ Birth to death of an asset
■ Life cycle
● Change Request
○ Verifies the impacts
● Procurement
○ Determines the budget
● Deployment
○ Implements procedures in a secure configuration
● Maintenance/Operations
○ Implements procedures for monitoring and support
● Disposal
○ Implements procedures for sanitizing data remnants

Answer 562

A

■ Maximizes the number of successful IT changes
■ The scope of change management is defined by each organization

Answer 563

A

■ Addition, modification, or removal that may have a direct or indirect
effect on IT services

Answer 564

A

■ Standard changes
● Preauthorized and can be implemented without any additional
authorization
■ Normal changes
● Changes where the authorization is gained
● Major changes need a higher level of approval
■ Emergency changes
● Changes that need to be expedited
● Emergency Change Advisory Board (ECAB)
● Emergency is when something is broken and needs to get back
online quickly

Answer 565

A

The person or group that authorizes changes

Answer 566

A

■ One person codes and the other person reads it and approves it
○ When working with large system networks, use normal change

Answer 567

A

Helps plan the changes and assists in communicating such changes to the
stakeholders to avoid conflicts
■ The change schedule informs everybody what’s happening
■ Ensures we have the resources to implement the changes

Answer 568

A

■ Fault to be fixed
■ New business need/process
■ Planned improvement

Answer 569

A

■ Write the changes to be made and justify
■ Analyzed for risk
● Provide a recommendation
■ Goes to the CAB
● Change Advisory Board (CAB)
○ Technical experts
○ Business experts
○ Senior leaders
■ Implement change

Answer 570

A

■ Plan of action to take if something goes wrong
■ Always have a rollback plan
■ Use sandbox testing

Answer 571

A

Make sure that people understand how to use that new system

Answer 572

A

■ Employees’ set of policies for a service or resource
■ Each organization sets up rules based on workflow and company values
■ Acceptable use policy is enforced by the organization to govern its
employees and users
■ Regulatory Compliance Requirements
■ A splash screen shows up when someone tries to log into a computer

Answer 573

A

■ New user set-up checklist and procedures
■ End-user termination checklist and procedures
■ Software installation procedures

Answer 574

A

■ Step-by-step list of actions to comply with the policy
■ SOPs will vary depending on the organization

Answer 575

A

Used as part of the employee offboarding process

Answer 576

A

■ Verify the system requirements
■ Validate the download source
■ Verify files
■ Verify software license
■ Ensure proper installation
■ Provide training and support

Answer 577

A

■ Gathers the opinions of all involved users, customers, technicians,
managers, and stakeholders
■ Figure out the cause
■ Incident report is a writeup based on what happened, the cause, and how
to prevent it in the future

Answer 578

A

■ One diagram for logical connections and another one for physical
connections
■ Network topology diagram shows network connections in a logical or
physical manner

Answer 579

A

■ Process of creating and storing copies of data to protect against data loss

Answer 580

A

■ Process of restoring data backup during data or system loss

Answer 581

A

■ The backup job is going to create a file that contains all the data from the
source
■ Full back up takes up a lot of space
■ Full backups take a long time

Answer 582

A

■ Will only back up things that have changed since the last backup

Answer 583

A

Backs up all the data that has been changed since the last full backup

Answer 584

A

■ An optional type of backup that can create full backups with lower data
transfer requirements
■ You’re not tying up the server by doing a lot of read/write operations,
and to copy everything off the server

Answer 585

A

■ Archive attribute flags are set to on anytime you modify a file

Answer 586

A

○ Anytime we do an incremental backup, we’re also going to clear the flag
○ On a differential backup, the flag does not get cleared
○ It’s going to get cleared when you do a full back up or an incremental backup

Answer 587

A

■ The period between backup jobs
■ When it comes to determining this frequency, it is all going to depend on
how much work you can afford to lose

Answer 588

A

■ The backup storage mechanism is in the same location as the system
they’re backing up

Answer 589

A

■ Backing up to some system not inside the same physical building where
your workstations are

Answer 590

A

■ Tape media rotation scheme that allows some of your backup media to
be taken to an offsite storage
■ The son tapes will store your most recent data and they have the shortest
retention period
■ The father is considered the middle generation
■ The grandfather tapes will have the longest retention period
■ GFS can be modified based on your own needs for retention, as well as
for frequency of backups

Answer 591

A

■ States that you should have three copies of your data, including your
production copy on your servers, two different types of media, and one
copy being held offline and off-site
■ You can use GFS in combination with the 3, 2, 1 backup rule
■ A backup can never be called good until you’ve tested that it works

Answer 592

A

○ A redundant power supply mitigates a single point of failure

Answer 593

A

■ An unexpected increase in the amount of voltage that’s being provided

Answer 594

A

■ A short, transient voltage that can be due to a short circuit, a trip circuit
breaker, a power outage, or even a lightning strike

Answer 595

A

■ An unexpected decrease in the amount of voltage provided

Answer 596

A

Occurs when the voltage drops low enough that it causes the lights to
dim and can cause a computer to shut off

Answer 597

A

■ Occurs when there is a total loss of power for a long period of time
■ Proper backup power and line conditioning

Answer 598

A

Combines the functionality of a surge suppressor with a battery backup

Answer 599

A

■ An emergency power system used when there is an outage of the regular
electric grid power
● Portable gas engine
● Permanently installed
● Battery inverter

Answer 600

A

■ Need
■ Budget
■ Downtime
■ Fuel source

Answer 601

A

■ Ensures every electrical device has a path to the ground, which is a path
that provides the least amount of resistance for electrical current to flow
away harmlessly
■ Make sure equipment is properly grounded when installing racks of
servers or equipment
■ Never disconnect the ground wire

Answer 602

A

■ Keeps the technician safe when working on electrical equipment
■ Never work on a power supply unless you are certified and properly
trained to do it
■ Never insert anything into the power supply area of a computer

Answer 603

A

■ Occurs whenever there’s a path that allows electrons to rush from a
statically charged body to a component that has no charge
■ To prevent ESD from happening, you need to ensure you take the proper
safety precautions

Answer 604

A

○ Work in a room that is set up properly to reduce ESD
○ Take out anything that can help create static electricity
○ Always properly handle components by using ESD safe equipment
○ Another large cause of ESD is anything that has a mechanical motor
○ Try and reduce static electricity as much as possible

Answer 605

A

○ Make sure HVAC systems are running to protect the servers, workstations, and
other equipment
○ Sensitive computer equipment, including servers, computers, and networking
gear, releases a lot of heat during their operations
○ HVAC systems also helps with the humidity levels in server rooms and
communication closets
○ Humidity level of around 40% to 60% using your HVAC systems
○ Many organizations will connect their HVAC systems to their ICS or SCADA
networks
○ Depending on your system’s capabilities, you may have to make some choices as
to which servers can remain online
○ Place systems and servers in the right location and provide adequate power and
cooling

Answer 606

A

■ Health and safety laws
■ Building codes
■ Environmental regulations

Answer 607

A

○ This ensures we keep our workplace hazard-free, and everything is safe and
sound
■ Occupational Safety and Health Administration (OSHA)
○ Building codes are something that are defined at the local, state, and national
level

Answer 608

A

■ Contains all the information about the ingredients, health hazards,
precautions, and first aid information

Answer 609

A

■ Batteries are made up of chemicals that are dangerous to the
environment
■ Swollen or leaking batteries should be bagged and properly stored in an
appropriate container
■ You need to dispose of it using the proper waste management methods
or recycling
■ Most vendors that you buy your toner from will have some sort of
recycling program
■ Whenever you’re disposing a toner cartridge or recycling it, you should
always wrap it up
■ Take them to the proper recycling location or waste management area
■ Make sure you’re in compliance with government regulations

Answer 610

A

○ One of the most common injuries is caused by lifting things improperly
○ If you do happen to cause an electrical fire, immediately remove the power
○ Disconnect the power
○ Prevent any kind of trip hazards
○ Lift with your legs and not with your back
○ Follow proper electrical fire safety
○ Use the proper safety equipment
○ Use PC safe vacuum

Answer 611

A

■ Specialized vacuum cleaner that doesn’t create an electrostatic charge

Answer 612

A

■ A set of procedures an investigator follows when examining a computer
security incident

Answer 613

A

■ Consists of monitoring and detection of security events on a computer
network and the use of proper responses to those security events
● Preparation
○ Ensure that it has a well-planned incident response
procedure
● Identification
○ Process of recognizing if an event should be classified as an
incident
● Containment
○ Focused on isolating the incident
● Eradication
○ Remove the threat or attack
● Recovery
○ Data restoration, system repair, and re-enabling any
servers or networks taken down during the incident
● Lessons Learned

Answer 614

A

○ A process is used to document the instant response
process, any changes to the procedures and the processes
and make sure we do better next time

Answer 615

A

○ The record of evidence history from collection to court presentation and disposal
○ Specialized evidence bags ensure electronic media cannot be damaged or
corrupted by electronic discharge (ESD)

Answer 616

A

Shields devices from outside signals to prevent data from being altered,
deleted, or added to a new device
■ Criminal cases or internal security audits can take months or years to
resolve

Answer 617

A

■ Preserves all relevant information when litigation is reasonably expected
to occur
■ Have spare hardware and good backups of your systems

Answer 618

A

■ Creates a forensically sound copy of the data from a source device

Answer 619

A

■ Any evidence gathered without proper authority or permission can be
inadmissible in court

Answer 620

A

■ Collecting evidence that could be easily tampered or destroyed first

Answer 621

A

■ From first to be collected to last:
● Registers and cache
○ Registers and cache can only be collected when the
computer is powered on
○ Some key areas (like HKLM\Hardware) are only stored in
the memory, so analyze the registry using a memory dump
○ Contents of the RAM will be lost if the computer is turned
off
● Routing tables, ARP caches, process tables and kernel statistics,
and memory
● Temporary file systems
○ These temporary files are often overwritten during system
operation
● Disks
○ data that’s persisted on mass storage devices and disc
● Remote logging and monitoring data
● Physical configurations and network topologies
○ helps provide context to an investigation
● Offline and Archival media

Answer 622

A

○ Create a forensic disk image of the data as evidence
○ Capture and hash system images
○ Analyze data with tools
○ Capture screenshots
○ Review network traffic logs
○ Capture video
○ Consider Order of Volatility
○ Take statements
○ Review licensing and documentation
○ Track man-hours and expenses
○ FTK and EnCase are popular forensic tools

Answer 623

A

■ Original developer retains all rights and ownership of a software code,
where you pay them a fee and you receive a license in return

Answer 624

A

■ Makes software free to use, modify, and share
■ There are lots of open-source projects that are not free

Answer 625

A

■ Allows one individual user to use a piece of software on their given
machine

Answer 626

A

■ A license for each individual machine or person who is actively using that
license
■ Active users are people who are logged in at this moment using that
piece of software
■ Licenses provide the legal access to use a software, and the privilege of
getting all the updates and security patches
■ Once you lose that valid license, you will no longer be able to get updates
to that software or its security patches
■ Most software licenses are going to be issued out for a certain period
■ Use trusted software that comes with a valid license

Answer 627

A

■ Dictates the terms of the license for a software
■ Always understand what is covered inside the EULA

Answer 628

A

■ Ensures copy protection for music and video that is being used in an
online or digital manner
■ DVDs were region-locked and only allowed to be sold in certain regions
based on the licensing
■ You may come across issues where some of your users aren’t able to play
a certain type of file because there’s DRM enabled
■ There are many digital formatted files that are protected by DRM

Answer 629

A

■ Public Data
● No impact to the company if released and is often on a company’s
website
■ Sensitive Data
● Minimal impact if released and includes things like a company’s
finances
■ Private Data
● Contains information like personnel records, salaries, and other
data only used in the organization
■ Confidential Data
● Contains items such as trade secrets, intellectual property data,
source code, and things that would harm the company if disclosed
■ Unclassified
● Can be released to the public under the Freedom of Information
Act
■ Controlled Unclassified Information (CUI)
● Includes unclassified information that should be protected from
public disclosure
■ Confidential Data
● Includes data such as trade secrets that would hurt the
government if disclosed
■ Secret Data
● Includes data such as military deployment plans and other things
that would damage national security if disclosed
■ Top Secret Data
● Includes blueprints for weapons or other information that could
gravely damage national security if known by those unauthorized
to know

Answer 630

A

■ Maintains and controls certain data to comply with business policies and
applicable laws and regulations

Answer 631

A

■ Keeping information for a specific purpose outside of an organization’s
data retention policy

Answer 632

A

■ A term by how often the newest or youngest media sets are overwritten

Answer 633

A

■ Any data moved to an archive to prevent being overwritten

Answer 634

A

■ Back up everything you’re legally required to, based on your retention
policies
■ Back up what you need based on corporate policies or operations

Answer 635

A

■ The maximum amount of time that can be lost from a recovery after a
disaster, failure, or other event
■ RPO helps drive the recovery window or the redundancy decisions made
in your business

Answer 636

A

■ A tag or a label to identify a piece of data under a subcategory of a
classification

Answer 637

A

■ Data related to health conditions, reproductive outcomes, causes of
death, or quality of life for individuals or the population
● HIPAA
○ Health Insurance Portability and Accountability Act of 1996

Answer 638

A

■ Consists of pieces or sets of information related to the financial health of
a business
● Payment Card Industry Data Security Standard (PCI DSS)
○ An agreement that any organization that collects, stores,
or processes credit card customer information must abide
by

Answer 639

A

■ A type of data that includes intangible creations of human intellect
● Copyright
● Patent
● Trademark
● Trade Secret

Answer 640

A

■ Any data that could potentially identify a specific individual
● Microsoft’s data loss prevention system (DLP)

Answer 641

A

■ This is the organization of the information into preset structures or
specifications
■ Structured Data
● Something like a comma separated value list
■ Unstructured Data
● Things like PowerPoint slides, emails, text files, chat logs

Answer 642

A

○ Privacy policies govern the labeling and handling of data

Answer 643

A

■ Defines the rules that restrict how a computer, network, or other systems
may be used

Answer 644

A

■ Defines the structured way of changing the state of a computer system,
network, or IT procedure

Answer 645

A

A preventative type of administration control

Answer 646

A

■ Different users are trained to perform the tasks of the same position to
help prevent and identify fraud that could occur if there was only one
user with the job

Answer 647

A

Require every employee take a vacation at some point during the year

Answer 648

A

■ Dictates what type of things need to be done when an employee is hired,
fired, or quits
■ Terminated employees are often not cooperative

Answer 649

A

■ Ensuring that IT infrastructure risks are known and managed properly

Answer 650

A

■ Mitigation actions that an organization takes to defend against the risks
that have been uncovered during due diligence

Answer 651

A

■ A legal term that refers to how an organization must respect and
safeguard personnel’s rights
■ Due Process protects citizens from their government and companies from
lawsuits

Answer 652

A

Used within Windows inside the command prompt environment

Answer 653

A

Used within Windows inside the PowerShell environment

Answer 654

A

Used within Windows inside Visual Basic

Answer 655

A

■ Used within Linux

Answer 656

A

■ Used for automations in webpages and macOS systems

Answer 657

A

■ Generic scripting language used in Windows, Linux, and Mac

Answer 658

A

■ Generic language used to teach new learners how to program a
computer

Answer 659

A

■ Text-based file that contains commands that can be interpreted and
presented to the computer

Answer 660

A

■ Text-based file containing Windows commands and is interpreted from
the command line environment

Answer 661

A

● net use
○ Map drives
● Xcopy/Robocopy
○ Copy

Answer 662

A

■ Allows for more complex scripts
■ PowerShell can change and interact with Windows components and
features, and Active Directory
■ Commandlets use a basic verb-noun naming scheme

Answer 663

A

■ Scripting language based on the Visual Basic programming language
■ .vbs runs from other applications, such as MS Word, MS Excel, and other
MS Office products

Answer 664

A

Works a lot like a batch script inside of Windows

Answer 665

A

■ Scripting language designed to be implemented inside of a web-based
interface
■ JavaScript is used on websites and web applications as well as in scripting
languages on macOS desktops and servers

Answer 666

A

■ General-purpose scripting and programming language that is used to
develop automation scripts and full-fledged software applications
■ Python runs on Windows, Linux, and Mac systems
■ Python is considered an interpreted language because it is cross-platform
in nature

Answer 667

A

○ Used to store values and data for different data types
○ In Pseudocode, no need to define the data type for each variable
○ Variables can change throughout the execution of the program

Answer 668

A

A form of data with only two possible values (True or False)

Answer 669

A

A made-up language that isn’t representative of any singular
programming language

Answer 670

A

A variable that stores an integer or a whole number that may be positive
or negative

Answer 671

A

■ A variable that stores a decimal number

Answer 672

A

■ A variable that can only store ASCII character

Answer 673

A

■ A variable that can store multiple characters

Answer 674

A

■ Like a variable, but cannot be changed within the program once defined
■ How do we define the value of variables and constants?

Answer 675

A

■ A type of flow control that controls which order the code will be executed
in each program

Answer 676

A

■ Used when the number of times to repeat a block of code is known

Answer 677

A

Used when the number of times to repeat a block of codes is not known
and will only stop until something happens

Answer 678

A

■ Used when there’s an indefinite iteration that need to happen and will
only stop until some condition is met at the end of the loop

Answer 679

A

○ Used to provide conditions based on different logical tests
○ Boolean operator
○ Arithmetic operator
○ String operator

Answer 680

A

■ echo
● Printing on screen
■ if [condition]
● Logical construct
■ $1
● Variable

Answer 681

A

■ Simple or routine task

Answer 682

A

Restart machines using scripts

Answer 683

A

■ Done within normal command line interface using a batch file (.bat) or
PowerShell

Answer 684

A

■ Can use a batch file or PowerShell in Windows or a shell file in Linux

Answer 685

A

■ PSWindowsUpdate
● PowerShell
■ Wusa.exe file
● Batch File
■ apt or yum
● BASH script

Answer 686

A

● PowerShell or Batch Script

Answer 687

A

● BASH Script (Linux)

Answer 688

A

● Windows

Answer 689

A

● Linux

Answer 690

A

Use scripts for is to be able to gather information or data from various
systems across your network

Answer 691

A

■ Makes life easier by being able to reach out and touch different assets
across your network

Answer 692

A

○ Unintentionally introducing malware
○ Inadvertently changing system settings
○ Causing browser or system crashes due to mishandling resources
○ Read the scripts and understand what they do before running them
○ Inadvertently changing system settings disables system protection
○ When running a script, use the least permissions needed
○ Depleting hard drive storage space occurs because log files or temporary files are
created as part of the scripting process
○ Faulty loops could lose network resources or memory resources
○ Incorrect API calls can cause the web browser’s file explorer or command
interpreter to crash

Answer 693

A

■ Telnet Port 23
● Sends text-based commands to remote devices and is a very old
networking protocol
● Telnet should never be used to connect to secure devices
■ Secure Shell (SSH) Port 22
● Encrypts everything that is being sent and received between the
client and the server
■ Remote Desktop Protocol (RDP) Port 3389
● Provides graphical interface to connect to another computer over
a network connection
■ Remote Desktop Gateway (RDG)
● Provides a secure connection using the SSL/TLS protocols to the
server via RDP
■ Create an encryption connection
● Control access to network resources based on permissions and
group roles
● Maintain and enforce authorization policies
● Monitor the status of the gateway and any RDP connections
■ Virtual Private Network (VPN)
● Establishes a secure connection between a client and a server
over an untrusted public network
■ Virtual Network Computing (VNC) Port 5900
● Designed for thin client architectures and things like Virtual
Desktop Infrastructure (VDI)
■ Virtual Desktop Infrastructure (VDI)
● Hosts a desktop environment on a centralized server
● Desktop as a Service (DaaS)
■ In-Band Management
● Managing devices using Telnet or SSH protocols over the network
■ Out-of-Band Management
● Connecting to and configuring different network devices using an
alternate path or management network
● To prevent a regular user’s machine from connecting to the
management interfaces of your devices
● Out-of-band networks add additional costs to the organization
■ Authentication
● Confirms and validates a user’s identity
■ Authorization
● Gives the user proper permissions to access a resource
■ Password Authentication Protocol (PAP)
● Sends usernames and passwords in plaintext for authentication
■ Challenge Handshake Authentication Protocol (CHAP)
● Sends the client a string of random text called a challenge which is
then encrypted using a password and sent back to the server
■ Extensible Authentication Protocol (EAP)
● Allows for more secure authentication methods to be used
instead of just a username and a password
■ Use EAP/TLS in conjunction with a RADIUS or TACACS+ server

Answer 694

A

○ A centralized tool used by managed service providers to manage groups of users
and workstations remotely

Answer 695

A

○ Will allow a user to ask for help from a technician or a coworker by using a
passcode-protected imitation file

Answer 696

A

■ Type of software that lets you allow somebody else remotely view what’s
on your screen
■ Screen sharing doesn’t have the ability to control what others are seeing
on the screen
■ You can use a non-persistent web application to be able to do the remote
screen-sharing
○ Video conferencing software do similar functions

Answer 697

A

■ An important type of software used by technicians to get files to or from
a system they’re troubleshooting
■ Nearby sharing is Microsoft’s version of AirDrop, and it works by using
Bluetooth and Wi-Fi direct connections between devices
■ For Bluetooth-enabled sharing on Android devices, you’ll use a function
known as Nearby Share
■ If you’re located across the world, you’ll have to use a file transfer
software like FTP, SFTP, or SSH to send those files

Answer 698

A

■ Designed for the deployment by an enterprise organization that allows
them to understand all the access controls and authorization involved
with all their different systems
■ UEM is essentially the desktop or laptop version of MDM
■ Having an agent installed on each individual workstation or laptop

Answer 699

A

■ Allows for the scanning of the desktops and laptops that are being
managed by the EDM
■ Gives the ability to use push deployment techniques for any upgrades,
updates, or security definitions
■ Gives the ability to create access control rules that will prevent different
workstations from being able to join the network

Answer 700

A

■ BIOS
● Master Boot Record
■ UEFI
● GUID Partition Table

Answer 701

A

○ The firmware will look through the storage device and identify where MBR is,
which is always going to be in the first sector of that disk

Answer 702

A

■ bootmgr.exe
■ winload.exe
■ Kernel
■ Hardware abstraction layer
■ Boot device drivers

Answer 703

A

■ \EFI\Microsoft\ contains BCD and bootmgfw.efi files
● Kernel
● Hardware abstraction layer
● Boot device drivers
■ Failure to boot
■ No OS found
■ GUI failing to load or a black screen
■ This used to happen because the boot order inside the BIOS or UEFI was
set incorrectly
■ Remove any external devices
■ Set the boot order to always go to the internal storage drive first
■ “No OS Found”
■ That disk drive doesn’t have an operating system installed
■ Use a startup repair tool to open the recovery command prompt, and
then use bootrec to be able to repair the drive’s boot information
● bootrec /fixmbr
● bootrec /fixboot
● bootrec /rebuildbcd

Answer 704

A

■ A command line disk partitioning tool that can be used to mark the
system partition as active
■ It usually indicates that there’s an issue with the graphics driver or the
system has a misconfiguration or corruption
■ Reboot the system into safe mode
■ START+CTRL_SHIFT+B
● Check Disk command: chkdsk
● System file checker: sfc
○ Failure to boot
○ No OS found
○ GUI failing to load or a black screen

Answer 705

A

○ Advanced Boot Options
○ Startup Repair
○ WinRE
○ You have a few different options for boot recovery tools, including advanced
boot options, startup repair, and the WinRE

Answer 706

A

○ Sometimes system updates may cause problems for your device, and to fix that,
we roll back the updates

Answer 707

A

○ System restore allows you to create multiple different points to restore data on
your system

Answer 708

A

○ When you’re doing a system restore, you’re only restoring the configurations
and the files for the system itself
○ In a system reinstall, you’re reinstalling a brand-new version of Windows, and
then you’d have to bring in your files afterwards from a known good backup
○ System Image
■ A snapshot of how a system looks right now, including all personal files,
applications, and installations

Answer 709

A

○ Your profiles are going to contain all the information for a particular user on a
Windows system

Answer 710

A

○ Memory
○ System files
○ USB devices

Answer 711

A

■ System freezing, shutting down, failing to respond, rebooting, or
powering off without an error message
■ Hardware
● Overheating, power, processor
■ Software
● Corrupted kernel files

Answer 712

A

■ Provides the ability to do memory diagnostics
■ Control panelAdministrative tools
■ Windows recover Memory diagnostic tool
■ Shut down the computer, take out the memory, and put it back

Answer 713

A

■ sfc C:
■ sfc C: /F
■ Use the Windows Update tool or the vendor’s website for the latest
chipset or system drive
■ Go to device manager and uninstall the USB host controller device
■ Disable the USB selective suspend power management
■ Powered hub gets its power from the USB, as well as when plugged into a
wall outlet
● Memory
● System files
● USB devices

Answer 714

A

■ Uninstall the program, reboot, and re-install

Answer 715

A

■ Event Viewer
■ Service Tool
● Manually start the service from the Services Tool
● Some services are interlinked and work together
● Two services conflict with each other
● Core functions inside Windows run as services
● Use the Registry Server (regsvr32) to register the DLL (dynamic
link library)

Answer 716

A

■ CMOS
■ Real-time Clock (RTC)
● Real-time clock (RTC) is powered by a battery on the motherboard
● Time drift is an indication that the battery on the motherboard
has died
○ Application crashes
○ Service startup failures
○ Time drift within the OS

Answer 717

A

■ Investigate and identify malware symptoms
■ Quarantine the infected systems
■ Disable system restore in Windows
■ Remediate the infected system
■ Schedule scans and run updates
■ Enable system restore and create a restore point in Windows
■ Educate the end-user

Answer 718

A

■ Schedule scans and run updates

Answer 719

A

■ Potentially Unwanted Application
● Nmap
● Netcat

Answer 720

A

■ Having a root kit means it has already infected the OS where the antimalware solution runs

Answer 721

A

■ Move the system into a logically or physically isolated secure segment of
the network
■ Sandbox protects the rest of the systems from getting infected
■ Scan the computer on a trusted system in a sandbox environment

Answer 722

A

■ Turn off automated backup systems, such as cloud and external disk
backups

Answer 723

A

■ A. Update anti-malware software
■ B. Scanning and removal techniques
● Reboot in safe mode and run the scanning and removal tools
● Run task manager, regedit, and msconfig to turn off different
services and background tasks
● Boot the computer using a Windows recovery media disc or a
Windows installation disc
● Re-image or re-install the system from a good backup or
installation disc

Answer 724

A

■ Schedule scans daily
■ Configuring scanning on access allows to scan downloaded files

Answer 725

A

■ Re-enable system restore and create a restore point
● Restore point after malware removal
● Restore point clean
■ Turn on automated backups again and validate critical services

Answer 726

A

■ How to set up and configure a password manager
■ How to verify if a website is actually a website
■ Proper use of social networking and how to tell if something is a scam or
trustworthy
■ Educate on the proper use of VPNs
■ Provide anti-phishing training

Answer 727

A

○ Browser redirection
○ Automatic redirection

Answer 728

A

■ Redirection happens in conjunction with phishing and pharming

Answer 729

A

Manual redirection or typo squatting

Answer 730

A

■ Host file is what we had before DNS
■ Scan the system, uninstall, and reinstall the browser
■ Check proxy settings and verify no proxy is being used

Answer 731

A

○ Stage 1 dropper
○ Stage 2 payload
■ Rogue Antivirus

Answer 732

A

○ Backup
○ System File Checker
■ Turn off the services and run the system file checker to fix it
■ Go through the seven-step malware removal process to remove malware

Answer 733

A

○ Software Troubleshooting

Answer 734

A

Reboot into safe mode on the Android device

Answer 735

A

■ Used to remove all the user’s data, applications, and settings
■ After the factory reset is complete, the device will reboot and bring you
into a setup menu for you to be able to do an initial configuration
● Device reset
● Factory reset

Answer 736

A

○ Adding new features

Answer 737

A

■ You may be trying to install an update that isn’t available
● Check what are the minimum requirements for that version of the
OS
● Apple will support devices for about three to five years
● Always verify the update you’re trying to install is compatible with
the device model
■ Check if you have enough power to install that update
■ Check your network connectivity
■ The server you’re trying to download from can just be busy
■ You don’t have enough storage space available
● Remove some of your files to free up some storage space
● Make sure you troubleshoot and solve the issue quickly

Answer 738

A

■ Overheating
■ Low battery
■ Faulty hardware component

Answer 739

A

■ The device may just shut itself off and not turn itself back on until the
device cools down
■ A faulty piece of hardware can cause the kernel inside of that operating
system to panic

Answer 740

A

■ Storage space
■ Failed update
■ Faulty app

Answer 741

A

■ The device will slow down first, and then if you don’t solve the problem,
it will escalate into the device randomly rebooting
■ See how many applications are open, and then close out the ones that
are not needed
■ If a code was written in a less efficient way, this can cause applications
and programs to run much more slowly
■ Find a different application that does the same function or uninstall that
application
○ The device starts to operate slowly, and if it progresses, it can turn into random
reboots

Answer 742

A

○ Applications that fail to launch
○ Applications that fail to close

Answer 743

A

When apps don’t launch or operate properly, clear out the cache for
those applications
■ Verify the application works on your version of the OS
■ Running out of storage space on your device
■ An application will fail to update if you don’t have a valid network
connection
■ Delete the application and then re-install it
■ Application issues could sometimes be caused by your company
■ Some mobile device management software can also turn off certain
functions or features

Answer 744

A

○ Cellular
○ Wi-Fi
○ Bluetooth
○ NFC

Answer 745

A

■ Verify that you have the correct settings for your cellular device
■ Check your network selection
■ Verify that you’re not in airplane mode
■ It is important to check that your Wi-Fi is still enabled
■ You’ll often get a weaker signal strength when communicating over Wi-Fi
on a mobile device
■ Using a thick type of protective case on a smartphone will also reduce the
amount of distance that a signal can travel
■ Bluetooth does provide a shorter coverage area
■ Bluetooth can cover between 10 feet and 30 feet of distance
■ Remove the Bluetooth pairing by forgetting that Bluetooth device and
then reconnecting to it and re-pairing with it

Answer 746

A

■ Very short distance wireless communication technology that only
operates within a couple of inches of your device
■ Verify that your airplane mode is not activated
■ Check if airplane mode is enabled
■ Forget that connection and then re-pair with the access point or device
that you’re trying to communicate with
■ For issues with NFC, simply close the distance and hold the phone there
longer
■ Verify that the sender is listed in your recipient’s contacts list

Answer 747

A

○ Application configuration is set incorrectly
○ The lower in brightness, the longer the battery lasts
○ Extreme temperature
○ Keep batteries and other electronic devices to 10-38°C
○ Batteries last from 3-5 years
○ Proper charging and discharging of battery
○ Let the battery drain to about 20% before recharging to increase the battery’s
lifespan
○ Smart charge initiates a slow trickle charge

Answer 748

A

○ Portrait

Answer 749

A

■ Rotation lock is enabled
● iOS
○ Control center
● Android
○ Notification drawer
■ User is not touching any other part of the screen
■ Some applications only work in one mode
■ Accelerometer or motion sensor detects which way the phone is held
■ If the sensor stops working, the device will no longer be allowed to
autorotate
● Rotation lock is disabled
● Check the applications
● Defective accelerometer or motion sensor

Answer 750

A

■ Android

Answer 751

A

■ iOS or iPad OS

Answer 752

A

■ Allows to get administrative rights on an Android device
■ Android devices are based on Linux
■ Custom firmware gives a new version of the Android OS
■ Custom firmware, or rooting, introduces lots of vulnerabilities
■ Rooting can lead to significant security vulnerabilities

Answer 753

A

■ Jailbreaking, Developer tools

Answer 754

A

■ Installing an application outside of the official store
● Settings
○ Allow third-party applications
■ Sideloading is considered a dangerous practice

Answer 755

A

■ Occurs when an application passes as a legitimate app
● Managed Google Play
○ Android
● Apple Business Manager
○ iPhone

Answer 756

A

■ Third-party app stores have spoofed applications that contain malware
■ Enterprise organizations use sideloading to install applications to access
private applications
■ Bootleg application stores have pirated versions of legitimate apps
■ Applications from bootleg app stores usually have malware embedded in
them

Answer 757

A

■ Check phone settings and verify that privacy settings are enabled

Answer 758

A

○ Fake security warnings
○ An on-path attack tries to collect information and see what you see

Answer 759

A

○ Bootleg or spoofed application
○ High amount of network traffic
■ DDoS
■ Mass email campaign
■ Cryptomining

Answer 760

A

■ Data from a mobile device going into the public Internet
■ The device is well protected and has an updated OS
■ Use long and strong passwords
■ Enable two-factor authentication (multifactor authentication)
■ Quarantine and investigate as part of an incident response for that data
breach
■ Check the cloud service and mobile device

Answer 761

A

○ Learn the best practices for dealing with end-users
○ Show up and dress up accordingly
○ Avoid distractions
○ Based on the rules of the organization

Answer 762

A

■ Gray suit
■ Black suit
■ Navy Blue suit

Answer 763

A

■ Khaki pants
■ Polo shirt
■ Button-down shirt

Answer 764

A

○ Business formal attire is dressing to impress
○ Business professional attire is dressing up but not wearing a full suit

Answer 765

A

■ No need to wear a suit, but you still need to dress up a little bit

Answer 766

A

■ Small-business casual allows people to be comfortable as long as it is
presentable

Answer 767

A

■ Be on time or early to ensure customer is not waiting on you

Answer 768

A

Give customer a timeline and expectation

Answer 769

A

■ Give customer your full attention
■ Always keep your cellphone in your pocket and do not use it at work
unless necessary

Answer 770

A

■ When dealing with high-level leaders, work on their schedule

Answer 771

A

Set expectations upfront with the customer and give status updates

Answer 772

A

○ Maintain positive attitude and project confidence
○ Actively listen and take notes
○ Use proper language
○ Be culturally sensitive
○ Communicate the status
○ Maintain a positive attitude and make the customer see that you’re there to help
them
○ Offer repair or replacement
○ Provide proper documentation

Answer 773

A

■ Open-ended Question
● Questions that need a valid response
○ “Can you tell me what you saw on your screen before the
computer rebooted?”
● Close-ended Question
○ Questions that are answered with a yes or no, or a simple
answer
■ Start with open-ended questions, then follow up with close-ended
questions to get final details

Answer 774

A

■ People from the same country can have different cultural differences
■ Use people’s professional titles and treat people with respect and dignity

Answer 775

A

■ Cost
● Repair is, what the likely
■ Timeframe
● Repair that option and how long that repair would likely last

Answer 776

A

■ Customer experience metric

Answer 777

A

■ End users’ confidential and private materials
■ “Is there anything you don’t want me to see on this device?”
■ “Is there anything I should stay away from?”
■ Ask if there’s anything they don’t want you to see
■ Do not open anything that stores confidential or private information
■ Do not use a customer’s device for your own personal use
■ Keep the working area clean and tidy

Answer 778

A

○ Do not personalize the support issues
○ Don’t argue with customers
○ Avoid dismissing the customer’s problems
○ Avoid being judgmental

Answer 779

A

■ Ask open-ended questions
■ Actively listen

Answer 780

A

■ Do not share experiences on social media

Brainscape's Knowledge GenomeTM

Dion Training CompTIA A+ Core 2 Flashcards

Brainscape's Knowledge Genome^TM