Sample questions
CompTIA A+ Core 2 220-1202 practice questions
During a Windows 10 deployment, you need to ensure that a specific Group Policy setting is applied to a computer before any user logs on. Which policy processing mode should you configure?
Trap 1: Loopback processing mode
Loopback processing is used to apply user policies based on the computer's location (e.g., in a specific OU), but it does not change the timing of policy application; it still requires a user logon.
Trap 2: User Configuration
User Configuration policies apply only when a user logs on, so they would not be in effect before the first user logs in.
Trap 3: Administrative Templates
Administrative Templates are a type of policy setting, not a processing mode. They can exist under both Computer and User Configuration.
- A
Loopback processing mode
Why wrong: Loopback processing is used to apply user policies based on the computer's location (e.g., in a specific OU), but it does not change the timing of policy application; it still requires a user logon.
- B
Computer Configuration
Policies under Computer Configuration are applied during system startup, before any user logs in. This ensures the setting is in effect for all users and at the login screen.
- C
User Configuration
Why wrong: User Configuration policies apply only when a user logs on, so they would not be in effect before the first user logs in.
- D
Administrative Templates
Why wrong: Administrative Templates are a type of policy setting, not a processing mode. They can exist under both Computer and User Configuration.
After installing a new printer driver, a user's Windows 11 computer crashes with a blue screen error every time they try to print. The computer works fine otherwise. Which boot option should be used to restore functionality without affecting user data?
Trap 1: Use Last Known Good Configuration to revert driver changes.
Last Known Good Configuration is available only for registry and driver changes that prevented boot, but it may not be effective if the system boots but crashes later.
Trap 2: Run System Restore from the recovery environment.
System Restore could work, but Safe Mode is quicker and more targeted for driver issues.
Trap 3: Perform a clean installation of Windows 11.
Clean installation is excessive and destructive; it should only be used when other recovery options fail.
- A
Boot into Safe Mode and uninstall the printer driver.
Safe Mode loads minimal drivers, allowing the technician to remove the faulty driver without the crash occurring.
- B
Use Last Known Good Configuration to revert driver changes.
Why wrong: Last Known Good Configuration is available only for registry and driver changes that prevented boot, but it may not be effective if the system boots but crashes later.
- C
Run System Restore from the recovery environment.
Why wrong: System Restore could work, but Safe Mode is quicker and more targeted for driver issues.
- D
Perform a clean installation of Windows 11.
Why wrong: Clean installation is excessive and destructive; it should only be used when other recovery options fail.
A user reports that their Windows 10 computer is infected with a virus that keeps reinstalling itself after removal. What should you do to remediate this persistent infection?
Trap 1: Run a system restore to a previous restore point
System Restore may not remove all components, and the virus could persist in restore points or system files.
Trap 2: Disable System Restore and then run an antivirus scan in normal mode
While disabling System Restore helps, scanning in normal mode may still allow the virus to hide or reinfect.
Trap 3: Reinstall Windows from the recovery partition
Reinstalling is a last resort; booting from rescue media is less disruptive and often effective.
- A
Run a system restore to a previous restore point
Why wrong: System Restore may not remove all components, and the virus could persist in restore points or system files.
- B
Boot from a rescue disc or USB and run an antivirus scan
Booting from trusted media bypasses the infected OS, enabling thorough removal without the virus interfering.
- C
Disable System Restore and then run an antivirus scan in normal mode
Why wrong: While disabling System Restore helps, scanning in normal mode may still allow the virus to hide or reinfect.
- D
Reinstall Windows from the recovery partition
Why wrong: Reinstalling is a last resort; booting from rescue media is less disruptive and often effective.
A customer reports that their Windows 10 laptop is displaying pop-up ads even when no browser is open. They suspect a malware infection. Which of the following should you do first to remediate this issue?
Trap 1: Run a full antivirus scan while the system is connected to the…
Running a scan while connected may allow malware to communicate with its source, potentially downloading more payloads or evading detection.
Trap 2: Perform a System Restore to a point before the pop-ups started.
System Restore may not remove all malware, especially if it has infected system restore points or persists in user data.
Trap 3: Immediately reinstall Windows 10 to ensure complete removal.
Reinstalling is a last resort after less drastic remediation steps have failed or if the infection is severe; it is not the first step.
- A
Run a full antivirus scan while the system is connected to the internet.
Why wrong: Running a scan while connected may allow malware to communicate with its source, potentially downloading more payloads or evading detection.
- B
Disconnect the network cable, boot into Safe Mode, then run a full antivirus scan.
This is the correct sequence: disconnecting the network stops remote communication, Safe Mode limits malware activity, and scanning identifies and removes the threat.
- C
Perform a System Restore to a point before the pop-ups started.
Why wrong: System Restore may not remove all malware, especially if it has infected system restore points or persists in user data.
- D
Immediately reinstall Windows 10 to ensure complete removal.
Why wrong: Reinstalling is a last resort after less drastic remediation steps have failed or if the infection is severe; it is not the first step.
A technician is configuring a new Windows 10 workstation for a user who handles sensitive financial data. The company policy mandates that the screen lock after 5 minutes of inactivity and require a password on wake. Which settings should the technician configure?
Trap 1: Set the power plan to turn off the display after 5 minutes.
Turning off the display does not lock the workstation; the user can wake it without authentication unless a password on wake is also set in power options.
Trap 2: Enable the 'Require password on wakeup' setting in the power plan…
This requires a password when waking from sleep, but it does not automatically lock the workstation after 5 minutes of inactivity if the screen saver is not set.
Trap 3: Set the computer to sleep after 5 minutes and require a password on…
Sleep mode may take longer to resume and could interfere with background tasks; the policy specifies screen lock, not sleep.
- A
Set the power plan to turn off the display after 5 minutes.
Why wrong: Turning off the display does not lock the workstation; the user can wake it without authentication unless a password on wake is also set in power options.
- B
Configure the screen saver to start after 5 minutes and check 'On resume, display logon screen.'
This combination locks the workstation after 5 minutes of inactivity and requires the user to log in again, meeting the policy.
- C
Enable the 'Require password on wakeup' setting in the power plan only.
Why wrong: This requires a password when waking from sleep, but it does not automatically lock the workstation after 5 minutes of inactivity if the screen saver is not set.
- D
Set the computer to sleep after 5 minutes and require a password on wake.
Why wrong: Sleep mode may take longer to resume and could interfere with background tasks; the policy specifies screen lock, not sleep.
A technician is responding to a security incident where an employee's credentials were used to access a server without authorization. The employee claims they did not perform the action. Which of the following should the technician do first to remediate the compromised account?
Trap 1: Reset the account password and enable MFA.
While these are important, the first step must be to disable the account to stop ongoing unauthorized access immediately.
Trap 2: Review the server logs to determine the extent of the breach.
Log review is important for investigation, but containment (disabling the account) should come first to prevent further damage.
Trap 3: Notify the employee's manager and HR department.
Notification is part of the incident response process, but the immediate technical step is to disable the compromised account.
- A
Reset the account password and enable MFA.
Why wrong: While these are important, the first step must be to disable the account to stop ongoing unauthorized access immediately.
- B
Disable the account to prevent further access.
Disabling the account is the first containment step; it stops the attacker from using the credentials while the investigation and remediation proceed.
- C
Review the server logs to determine the extent of the breach.
Why wrong: Log review is important for investigation, but containment (disabling the account) should come first to prevent further damage.
- D
Notify the employee's manager and HR department.
Why wrong: Notification is part of the incident response process, but the immediate technical step is to disable the compromised account.
A user reports that their external hard drive is no longer recognized by Windows. They suspect it might be infected with malware from a previous connection. You run a security scan and find no threats. What is the most likely cause of the drive not being recognized?
Trap 1: The drive is permanently damaged by malware.
Malware rarely physically damages hardware; the drive is likely functional but has a driver or file system issue.
Trap 2: The user needs to format the drive to remove malware.
Formatting would erase data unnecessarily since no malware was found, and it may not fix a driver issue.
Trap 3: Windows Firewall is blocking the external drive.
Windows Firewall does not block external storage devices; it filters network traffic.
- A
The drive is permanently damaged by malware.
Why wrong: Malware rarely physically damages hardware; the drive is likely functional but has a driver or file system issue.
- B
The USB controller driver is corrupted or outdated.
Corrupted drivers can prevent device recognition; reinstalling or updating the driver in Device Manager often fixes the problem.
- C
The user needs to format the drive to remove malware.
Why wrong: Formatting would erase data unnecessarily since no malware was found, and it may not fix a driver issue.
- D
Windows Firewall is blocking the external drive.
Why wrong: Windows Firewall does not block external storage devices; it filters network traffic.
A customer complains that their iPhone's Wi-Fi keeps disconnecting and reconnecting. They have already rebooted the phone and the router. Which of the following is the MOST likely cause?
Trap 1: The phone's SIM card is faulty.
A faulty SIM card affects cellular service, not Wi-Fi connectivity.
Trap 2: The Wi-Fi network password was changed recently.
While a changed password can cause disconnection, the symptom of repeated disconnects suggests a different issue, as the phone would simply fail to connect.
Trap 3: The phone's operating system needs a full restore via iTunes.
A full restore is excessive for a Wi-Fi issue; simpler steps like forgetting the network should be attempted first.
- A
The phone's SIM card is faulty.
Why wrong: A faulty SIM card affects cellular service, not Wi-Fi connectivity.
- B
The Wi-Fi network password was changed recently.
Why wrong: While a changed password can cause disconnection, the symptom of repeated disconnects suggests a different issue, as the phone would simply fail to connect.
- C
The phone's Wi-Fi profile is corrupted.
A corrupted Wi-Fi profile can cause intermittent disconnects; forgetting the network and reconnecting often fixes this.
- D
The phone's operating system needs a full restore via iTunes.
Why wrong: A full restore is excessive for a Wi-Fi issue; simpler steps like forgetting the network should be attempted first.
A user reports that their Android phone's screen is unresponsive to touch, but the buttons and notification LED still work. They have already performed a forced restart. What should the technician do NEXT?
Trap 1: Replace the screen assembly.
Hardware replacement should only be done after software causes are ruled out, as it is costly and irreversible.
Trap 2: Perform a factory reset from the recovery menu.
A factory reset is a more drastic step and should be done after Safe Mode testing to confirm the cause.
Trap 3: Update the phone's firmware using a computer.
Firmware updates may help but are not the next logical step after a forced restart; Safe Mode is more targeted.
- A
Replace the screen assembly.
Why wrong: Hardware replacement should only be done after software causes are ruled out, as it is costly and irreversible.
- B
Boot the phone into Safe Mode to check if the issue persists.
Safe Mode disables third-party apps; if the touch works there, a recently installed app is likely the culprit.
- C
Perform a factory reset from the recovery menu.
Why wrong: A factory reset is a more drastic step and should be done after Safe Mode testing to confirm the cause.
- D
Update the phone's firmware using a computer.
Why wrong: Firmware updates may help but are not the next logical step after a forced restart; Safe Mode is more targeted.
A customer's iPhone is experiencing frequent app crashes and the device feels warm to the touch. They have not installed any new apps recently. What is the most likely cause?
Trap 1: The device has a virus or malware.
iOS is highly resistant to malware; overheating and crashes are more often due to software bugs or hardware issues.
Trap 2: The battery is failing and needs replacement.
A failing battery can cause overheating, but it's less common than software issues causing crashes; this would be a secondary consideration.
Trap 3: Too many apps are running in the background.
While possible, iOS manages background processes efficiently; this is less likely to cause frequent crashes and overheating without new apps.
- A
The device has a virus or malware.
Why wrong: iOS is highly resistant to malware; overheating and crashes are more often due to software bugs or hardware issues.
- B
The battery is failing and needs replacement.
Why wrong: A failing battery can cause overheating, but it's less common than software issues causing crashes; this would be a secondary consideration.
- C
The operating system needs to be updated.
Outdated iOS versions often contain bugs that cause apps to crash and the device to overheat; updating can resolve these issues.
- D
Too many apps are running in the background.
Why wrong: While possible, iOS manages background processes efficiently; this is less likely to cause frequent crashes and overheating without new apps.
A user complains that their Android phone's battery drains quickly after installing a new weather app. The phone is warm to the touch even when idle. What should you do to resolve this?
Trap 1: Replace the battery immediately.
Battery replacement is premature; the issue started only after installing an app, suggesting a software cause.
Trap 2: Perform a factory reset to remove all apps.
A factory reset is too aggressive and would erase all user data; it should be a last resort.
Trap 3: Update the phone's operating system to the latest version.
Updating the OS may not fix a specific app issue and could introduce other changes; it is not the first step.
- A
Replace the battery immediately.
Why wrong: Battery replacement is premature; the issue started only after installing an app, suggesting a software cause.
- B
Check battery usage in Settings to see which app is consuming power.
Battery usage stats will show the weather app if it is draining power, allowing targeted action.
- C
Perform a factory reset to remove all apps.
Why wrong: A factory reset is too aggressive and would erase all user data; it should be a last resort.
- D
Update the phone's operating system to the latest version.
Why wrong: Updating the OS may not fix a specific app issue and could introduce other changes; it is not the first step.
A user reports that their iPad will not rotate the screen when they turn the device sideways. The rotation lock icon appears in the status bar. What is the most likely cause?
Trap 1: The accelerometer is faulty.
A faulty accelerometer would not show the rotation lock icon; the icon indicates software control.
Trap 2: The app being used does not support rotation.
While some apps are portrait-only, the lock icon overrides rotation for all apps; the icon is the key clue.
Trap 3: The device needs a software update to fix a rotation bug.
A rotation bug would not show the lock icon; the icon indicates intentional user setting.
- A
The accelerometer is faulty.
Why wrong: A faulty accelerometer would not show the rotation lock icon; the icon indicates software control.
- B
The app being used does not support rotation.
Why wrong: While some apps are portrait-only, the lock icon overrides rotation for all apps; the icon is the key clue.
- C
Rotation lock is enabled in Control Center or via the side switch.
The rotation lock icon confirms the feature is on; disabling it will restore rotation.
- D
The device needs a software update to fix a rotation bug.
Why wrong: A rotation bug would not show the lock icon; the icon indicates intentional user setting.
A company's Android devices are failing to connect to the corporate email server after a security policy update. The devices show 'Authentication failed' for the email app. What is the most likely cause?
Trap 1: The devices need a factory reset to clear cached credentials.
A factory reset is unnecessary; the issue is likely a configuration mismatch, not corrupted cache.
Trap 2: The SIM cards are deactivated.
Deactivated SIMs would prevent cellular data entirely, not just email authentication.
Trap 3: The devices are infected with malware that blocks email.
Malware is less likely than a configuration issue, especially after a policy update.
- A
The devices need a factory reset to clear cached credentials.
Why wrong: A factory reset is unnecessary; the issue is likely a configuration mismatch, not corrupted cache.
- B
The email app's server settings (IMAP/POP/SMTP) are no longer correct.
Security policy updates often change server addresses or require SSL/TLS; incorrect settings cause authentication failure.
- C
The SIM cards are deactivated.
Why wrong: Deactivated SIMs would prevent cellular data entirely, not just email authentication.
- D
The devices are infected with malware that blocks email.
Why wrong: Malware is less likely than a configuration issue, especially after a policy update.
A customer reports that their computer shuts down unexpectedly after a few minutes of use. The system feels hot to the touch, and the fan is running loudly. What is the most appropriate first step for a technician to take to ensure safety while diagnosing the issue?
Trap 1: Immediately open the case and touch the CPU heatsink to check…
Touching internal components while the system is powered on and hot can cause burns or static discharge damage.
Trap 2: Spray compressed air into the vents while the system is running to…
Spraying compressed air into a running system can cause fan blades to spin too fast and damage bearings or generate static.
Trap 3: Replace the power supply unit immediately to fix the overheating.
Replacing the PSU without diagnosing the cause of overheating is premature and may not address the actual issue, such as a clogged fan.
- A
Immediately open the case and touch the CPU heatsink to check temperature.
Why wrong: Touching internal components while the system is powered on and hot can cause burns or static discharge damage.
- B
Unplug the computer, let it cool for 30 minutes, then inspect for dust or fan failure.
Unplugging ensures no power is supplied, and letting it cool prevents burns; inspection can then be done safely.
- C
Spray compressed air into the vents while the system is running to clear dust.
Why wrong: Spraying compressed air into a running system can cause fan blades to spin too fast and damage bearings or generate static.
- D
Replace the power supply unit immediately to fix the overheating.
Why wrong: Replacing the PSU without diagnosing the cause of overheating is premature and may not address the actual issue, such as a clogged fan.
During a network upgrade, a technician needs to run new Ethernet cables through a drop ceiling. The technician notices that some existing cables are resting on the ceiling tiles and are not secured. What safety concern should the technician address?
Trap 1: Leave the cables as they are and run the new cables alongside them.
Adding more cables to an unsafe situation increases the risk of ceiling tile collapse and does not fix the existing hazard.
Trap 2: Use zip ties to attach the cables to the sprinkler pipes for…
Attaching cables to sprinkler pipes is against fire code because it can interfere with sprinkler operation in an emergency.
Trap 3: Remove the existing cables and replace them with the new ones.
Removing existing cables without knowing their purpose could disrupt network services; the correct action is to secure all cables properly.
- A
Leave the cables as they are and run the new cables alongside them.
Why wrong: Adding more cables to an unsafe situation increases the risk of ceiling tile collapse and does not fix the existing hazard.
- B
Secure all cables to the ceiling grid using appropriate cable supports.
Proper cable management prevents tiles from being dislodged and ensures cables are not a fire or tripping hazard.
- C
Use zip ties to attach the cables to the sprinkler pipes for stability.
Why wrong: Attaching cables to sprinkler pipes is against fire code because it can interfere with sprinkler operation in an emergency.
- D
Remove the existing cables and replace them with the new ones.
Why wrong: Removing existing cables without knowing their purpose could disrupt network services; the correct action is to secure all cables properly.
A technician is installing a new UPS (Uninterruptible Power Supply) in a server rack. The UPS is heavy and must be mounted securely. What is the most important safety consideration during installation?
Trap 1: Ensure the UPS is connected to a grounded outlet before mounting.
While grounding is important, the immediate safety risk during installation is physical injury from the weight of the UPS.
Trap 2: Verify that the UPS batteries are charged before installation.
Battery charge is not a safety concern during installation. The primary risk is physical injury from lifting.
Trap 3: Install the UPS at the top of the rack for better airflow.
Installing heavy equipment at the top of a rack can make it top-heavy and unstable. The UPS should be installed at the bottom for stability.
- A
Ensure the UPS is connected to a grounded outlet before mounting.
Why wrong: While grounding is important, the immediate safety risk during installation is physical injury from the weight of the UPS.
- B
Use a lifting team or mechanical lift to position the UPS.
This is correct. UPS units are heavy and require proper lifting equipment or multiple people to avoid back injury or dropping the unit.
- C
Verify that the UPS batteries are charged before installation.
Why wrong: Battery charge is not a safety concern during installation. The primary risk is physical injury from lifting.
- D
Install the UPS at the top of the rack for better airflow.
Why wrong: Installing heavy equipment at the top of a rack can make it top-heavy and unstable. The UPS should be installed at the bottom for stability.
A security incident response team needs to find all files in /var/www that have the SUID bit set, which may indicate a privilege escalation risk. Which command should they use?
Trap 1: find /var/www -type f -perm 4000
This searches for files with exactly permission 4000 (SUID only), but files may have other permissions as well, so it may miss many.
Trap 2: ls -la /var/www | grep '^...s'
This lists files and greps for SUID in the owner execute position, but it does not search recursively and may miss files in subdirectories.
Trap 3: chmod -R u+s /var/www
This command sets the SUID bit on all files, which is the opposite of what is needed and a security risk.
- A
find /var/www -type f -perm 4000
Why wrong: This searches for files with exactly permission 4000 (SUID only), but files may have other permissions as well, so it may miss many.
- B
find /var/www -type f -perm /4000
The /4000 syntax finds any file where the SUID bit is set, regardless of other permission bits.
- C
ls -la /var/www | grep '^...s'
Why wrong: This lists files and greps for SUID in the owner execute position, but it does not search recursively and may miss files in subdirectories.
- D
chmod -R u+s /var/www
Why wrong: This command sets the SUID bit on all files, which is the opposite of what is needed and a security risk.
During a software deployment, a technician must dispose of 50 unused software license CDs. The CDs are still sealed. What is the most environmentally friendly way to handle them?
Trap 1: Throw them in the general office trash bin.
CDs are not biodegradable and contribute to landfill waste; they should be recycled.
Trap 2: Shred them and put the pieces in the recycling bin.
Shredding creates small pieces that may not be accepted by all recyclers and can contaminate other recyclables.
Trap 3: Burn them in an incinerator to generate energy.
Burning CDs releases toxic fumes and is not a recommended disposal method for small quantities.
- A
Throw them in the general office trash bin.
Why wrong: CDs are not biodegradable and contribute to landfill waste; they should be recycled.
- B
Shred them and put the pieces in the recycling bin.
Why wrong: Shredding creates small pieces that may not be accepted by all recyclers and can contaminate other recyclables.
- C
Donate them to a local school or non-profit that can use them.
Donation extends the life of the media and reduces waste; it is the most environmentally friendly option.
- D
Burn them in an incinerator to generate energy.
Why wrong: Burning CDs releases toxic fumes and is not a recommended disposal method for small quantities.
A small office has several old CRT monitors that need to be replaced. The office manager asks the technician to simply place them in the dumpster. What should the technician do?
Trap 1: Comply with the manager's request to avoid conflict.
Disposing of CRTs in a dumpster is illegal in many areas due to hazardous content. The technician has a professional and legal responsibility to follow environmental regulations.
Trap 2: Break the monitors down to salvage the copper, then discard the…
Breaking CRTs releases lead dust and other toxins, creating a health hazard. This is not safe or compliant.
Trap 3: Donate the monitors to a local school.
Donation passes the disposal problem to someone else and may still require eventual proper disposal. Many schools no longer accept CRTs due to their weight and toxicity.
- A
Comply with the manager's request to avoid conflict.
Why wrong: Disposing of CRTs in a dumpster is illegal in many areas due to hazardous content. The technician has a professional and legal responsibility to follow environmental regulations.
- B
Break the monitors down to salvage the copper, then discard the glass.
Why wrong: Breaking CRTs releases lead dust and other toxins, creating a health hazard. This is not safe or compliant.
- C
Contact a licensed e-waste recycler to pick up the monitors for proper disposal.
This is the correct procedure. Licensed recyclers handle hazardous materials safely and ensure compliance with environmental laws.
- D
Donate the monitors to a local school.
Why wrong: Donation passes the disposal problem to someone else and may still require eventual proper disposal. Many schools no longer accept CRTs due to their weight and toxicity.
A technician is setting up a new workstation in a cubicle. The user complains of eye strain and glare from the overhead lights. Which environmental adjustment should the technician recommend first?
Trap 1: Replace the overhead fluorescent tubes with LED bulbs.
While LEDs may reduce flicker, they do not eliminate glare. This is a more costly and less direct solution.
Trap 2: Apply a matte screen filter to the monitor.
A matte filter can reduce glare but may also dim the display. Repositioning the monitor is a simpler first step.
Trap 3: Increase the monitor's brightness to overpower the glare.
Increasing brightness can worsen eye strain and does not address the root cause. It may also cause more discomfort.
- A
Replace the overhead fluorescent tubes with LED bulbs.
Why wrong: While LEDs may reduce flicker, they do not eliminate glare. This is a more costly and less direct solution.
- B
Apply a matte screen filter to the monitor.
Why wrong: A matte filter can reduce glare but may also dim the display. Repositioning the monitor is a simpler first step.
- C
Rotate the monitor 90 degrees so the light hits the side of the screen.
Positioning the monitor perpendicular to light sources minimizes glare. This is a quick, zero-cost ergonomic adjustment.
- D
Increase the monitor's brightness to overpower the glare.
Why wrong: Increasing brightness can worsen eye strain and does not address the root cause. It may also cause more discomfort.
A company’s change management policy requires all changes to be approved by the Change Advisory Board (CAB) before implementation. A technician applies an emergency security patch to a critical server without CAB approval because the vulnerability is being actively exploited. What should the technician do after applying the patch?
Trap 1: Wait for the next CAB meeting to report the change.
Waiting could delay necessary documentation and approval; the technician should notify the CAB immediately.
Trap 2: Revert the patch and wait for CAB approval.
Reverting a critical security patch during an active exploit would leave the system vulnerable, which is not advisable.
Trap 3: Delete the change log entry to avoid accountability.
Deleting entries is unethical and violates documentation policies; it could lead to disciplinary action.
- A
Wait for the next CAB meeting to report the change.
Why wrong: Waiting could delay necessary documentation and approval; the technician should notify the CAB immediately.
- B
Document the change and submit an emergency change request for retroactive approval.
This follows the correct procedure for emergency changes: document and seek retroactive approval from the CAB.
- C
Revert the patch and wait for CAB approval.
Why wrong: Reverting a critical security patch during an active exploit would leave the system vulnerable, which is not advisable.
- D
Delete the change log entry to avoid accountability.
Why wrong: Deleting entries is unethical and violates documentation policies; it could lead to disciplinary action.
A change advisory board (CAB) approves a network switch replacement, but the technician discovers during implementation that the new switch requires a different firmware version than documented. The change plan does not include a rollback for this scenario. What is the best course of action?
Trap 1: Proceed with the firmware update and document the change afterward.
Proceeding without CAB approval violates change management policy, especially when the change plan is incomplete.
Trap 2: Use the old switch firmware on the new switch to match the…
Using incompatible firmware could damage the switch or cause network issues, and it bypasses the proper process.
Trap 3: Implement the switch and create a separate change request for the…
Implementing first and requesting later is risky; the CAB should be involved before making changes that deviate from the approved plan.
- A
Proceed with the firmware update and document the change afterward.
Why wrong: Proceeding without CAB approval violates change management policy, especially when the change plan is incomplete.
- B
Stop the implementation and contact the CAB for a revised change plan.
Halting and consulting the CAB ensures the change is properly authorized and the plan is updated to include the firmware change and rollback.
- C
Use the old switch firmware on the new switch to match the documentation.
Why wrong: Using incompatible firmware could damage the switch or cause network issues, and it bypasses the proper process.
- D
Implement the switch and create a separate change request for the firmware.
Why wrong: Implementing first and requesting later is risky; the CAB should be involved before making changes that deviate from the approved plan.
A technician is performing a routine software update on a finance department server. The change management documentation specifies that the update must be applied during a maintenance window from 2:00 AM to 4:00 AM. At 3:30 AM, the update fails with an error. The technician has no rollback plan documented. What should the technician do?
Trap 1: Attempt to roll back the update using the server’s built-in…
While attempting a rollback is logical, without a documented plan, the technician risks making the situation worse and should escalate first.
Trap 2: Continue troubleshooting until the maintenance window ends, then…
Continuing to troubleshoot without a plan risks exceeding the maintenance window, causing business impact, and delaying escalation.
Trap 3: Reboot the server to clear the error and retry the update.
Rebooting without understanding the error could lead to data loss or system instability, and does not address the lack of a rollback plan.
- A
Attempt to roll back the update using the server’s built-in recovery options.
Why wrong: While attempting a rollback is logical, without a documented plan, the technician risks making the situation worse and should escalate first.
- B
Leave the server in its current state and escalate the issue to the change manager.
Escalating ensures that the change manager can coordinate a proper response, possibly involving the CAB, and document the failure for future improvements.
- C
Continue troubleshooting until the maintenance window ends, then document the failure.
Why wrong: Continuing to troubleshoot without a plan risks exceeding the maintenance window, causing business impact, and delaying escalation.
- D
Reboot the server to clear the error and retry the update.
Why wrong: Rebooting without understanding the error could lead to data loss or system instability, and does not address the lack of a rollback plan.
A small business is deploying a new time-tracking application to five workstations. The technician needs to ensure the installation is standardized and repeatable. Which documentation should the technician create before starting the deployment?
Trap 1: A list of user passwords for the application.
User passwords are sensitive and should not be documented in a deployment plan; they are provisioned separately.
Trap 2: A detailed network topology diagram.
While useful, a network topology diagram is not directly needed for a standardized software installation.
Trap 3: A copy of the software license agreement.
The license agreement is important but does not help standardize the installation process.
- A
A list of user passwords for the application.
Why wrong: User passwords are sensitive and should not be documented in a deployment plan; they are provisioned separately.
- B
A detailed network topology diagram.
Why wrong: While useful, a network topology diagram is not directly needed for a standardized software installation.
- C
A step-by-step installation guide with screenshots.
A step-by-step guide ensures each workstation is configured identically and serves as a reference for future deployments.
- D
A copy of the software license agreement.
Why wrong: The license agreement is important but does not help standardize the installation process.
Question Discussion
Share a tip, memory trick, or ask about the reasoning behind this question. Do not post real exam questions, leaked content, braindumps, or copyrighted exam material. Comments are moderated and may be removed without notice.
Sign in to join the discussion.