Question 203 of 750
Windows Security SettingseasyMultiple ChoiceObjective-mapped

UAC Notification Levels: Troubleshooting Standard User Installation Problems

This 220-1202 practice question tests your understanding of windows security settings. The scenario asks you to isolate a root cause — eliminate options that address a different problem before choosing. After answering, compare your reasoning against the explanation and wrong-answer breakdown below. Once you have made your selection, read the full explanation to reinforce the concept and understand why each distractor is designed to mislead on exam day.

A user reports that after a recent Windows update, their standard user account can no longer install certain applications that previously installed without issue. The update changed the default User Account Control (UAC) behavior. Which UAC setting would most likely restore the previous behavior while still prompting for consent?

Clue words in this question

Noticing these words before you look at the options changes how you read each choice.

  • Clue: "most likely"

    Why it matters: Probability qualifier — the question wants the most probable cause or outcome, not a guaranteed one. Eliminate low-probability options.

Quick Answer

The correct answer is "Notify me only when apps try to make changes to my computer (do not dim my desktop)." This UAC notification level restores the previous behavior because it allows standard users to receive a credential prompt for installations without enabling the secure desktop, which was likely activated by the update and blocks the prompt from appearing. On the CompTIA A+ Core 2 220-1202 exam, this question tests your understanding of the four UAC notification levels and how they affect standard user installation rights—a common trap is confusing "dim my desktop" with security, when in fact the non-dimmed setting simply removes the secure desktop while still prompting for consent. A useful memory tip is to associate "no dim" with "no disruption" for standard users, as it keeps the prompt visible without freezing the screen.

Answer choices

Why each option matters

Answer the question above first, then reveal the full breakdown to understand why each option is right or wrong.

Correct answer & explanation

Notify me only when apps try to make changes to my computer (do not dim my desktop)

The default UAC behavior in Windows is 'Notify me only when apps try to make changes to my computer (dim my desktop)' — this prompts for consent when an app requests administrative privileges, but does not prompt for standard user account changes that are handled by the system. The update changed the behavior to a more restrictive setting, likely 'Always notify me (dim my desktop)', which prompts for any system change, including those that previously installed without issue. Option B, 'Notify me only when apps try to make changes to my computer (do not dim my desktop)', restores the previous behavior by prompting for consent only when an app attempts to make a change, but without dimming the desktop, which is a less intrusive prompt that still maintains security.

Key principle: Answer the scenario, not the keyword: identify the specific constraint before choosing the most familiar-sounding option.

Answer analysis

Option-by-option breakdown

For each option: why learners choose it and why it is or isn't the right answer here.

  • Always notify me (dim my desktop)

    Why it's wrong here

    This is the most restrictive setting and would cause more prompts, not fewer, making it incorrect for restoring the previous behavior.

  • Notify me only when apps try to make changes to my computer (do not dim my desktop)

    Why this is correct

    This is the default setting for standard users and allows prompts without the secure desktop, which matches the described previous behavior.

    Clue confirmation

    The clue word "most likely" in the question point toward this answer.

    Related concept

    Read the scenario before looking for a memorised answer.

  • Notify me only when apps try to make changes to my computer (dim my desktop)

    Why it's wrong here

    This setting dims the desktop, which is more secure but was likely not the previous behavior since the user reports a change after the update.

  • Never notify me

    Why it's wrong here

    This disables UAC entirely, which is a security risk and not a typical default setting, so it would not restore the previous behavior.

Common exam traps

Common exam trap: answer the scenario, not the keyword

CompTIA often tests the distinction between the 'dim my desktop' and 'do not dim my desktop' variants of the same notification level, where candidates mistakenly think the dimming behavior is tied to the notification frequency rather than the Secure Desktop switch.

Detailed technical explanation

How to think about this question

UAC works by running standard user accounts with a filtered access token; when an app requires administrative privileges, the system prompts for consent via the Secure Desktop (dimmed) or a standard prompt. The 'do not dim my desktop' setting (Option B) uses the same consent UI but without switching to the Secure Desktop, reducing interruption while still requiring user approval for elevated actions. In real-world scenarios, this setting is often used in enterprise environments where users need to install approved applications without the full Secure Desktop interruption, but still require explicit consent for elevation.

KKey Concepts to Remember

  • Read the scenario before looking for a memorised answer.
  • Find the constraint that changes the correct option.
  • Eliminate answers that are true in general but not in this case.

TExam Day Tips

  • Watch for words such as best, first, most likely and least administrative effort.
  • Review why wrong options are wrong, not only why the correct option is correct.

Key takeaway

Answer the scenario, not the keyword: identify the specific constraint before choosing the most familiar-sounding option.

Real-world example

How this comes up in practice

A junior network technician can log in to a core router but cannot reach the enable prompt or configuration mode. The AAA server is authenticating the login — but the authorisation policy only grants privilege level 1, not 15. Authentication (who you are) is working; authorisation (what you can do) is not.

What to study next

Got this wrong? Here's your next step.

Identify which exam domain this question belongs to, review the core concept, then practise similar questions from the same domain.

Related practice questions

Related 220-1202 practice-question pages

Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.

Practice this exam

Start a free 220-1202 practice session

Short sessions build daily habit. Longer sessions build exam-day stamina. Try a timed session to simulate real conditions.

FAQ

Questions learners often ask

What does this 220-1202 question test?

Windows Security Settings — This question tests Windows Security Settings — Read the scenario before looking for a memorised answer..

What is the correct answer to this question?

The correct answer is: Notify me only when apps try to make changes to my computer (do not dim my desktop) — The default UAC behavior in Windows is 'Notify me only when apps try to make changes to my computer (dim my desktop)' — this prompts for consent when an app requests administrative privileges, but does not prompt for standard user account changes that are handled by the system. The update changed the behavior to a more restrictive setting, likely 'Always notify me (dim my desktop)', which prompts for any system change, including those that previously installed without issue. Option B, 'Notify me only when apps try to make changes to my computer (do not dim my desktop)', restores the previous behavior by prompting for consent only when an app attempts to make a change, but without dimming the desktop, which is a less intrusive prompt that still maintains security.

What should I do if I get this 220-1202 question wrong?

Identify which exam domain this question belongs to, review the core concept, then practise similar questions from the same domain.

Are there clue words in this question I should notice?

Yes — watch for: "most likely". Probability qualifier — the question wants the most probable cause or outcome, not a guaranteed one. Eliminate low-probability options.

What is the key concept behind this question?

Read the scenario before looking for a memorised answer.

About these practice questions

Courseiva creates original exam-style practice questions with explanations and wrong-answer analysis. It does not publish real exam questions, exam dumps, or protected exam content. Learn why practice questions differ from exam dumps →

How Courseiva writes practice questions · Editorial policy

Same concept, more angles

2 more ways this is tested on 220-1202

These questions test the same concept from different angles. Work through them to make sure you can recognise it however the exam phrases it.

Variation 1. A user reports that after a recent Windows update, they can no longer install software on their company-issued laptop. When they try to run an installer, they get a message: 'Your system administrator has blocked this program.' The user has local administrator rights on the laptop. Which Windows security setting is most likely causing this issue?

easy
  • A.Windows Defender Firewall is blocking the installer.
  • B.User Account Control (UAC) is set to 'Always notify.'
  • C.BitLocker Drive Encryption is preventing write access.
  • D.The user's account is not part of the local Administrators group.

Why B: User Account Control (UAC) with the 'Always notify' setting forces every installation attempt to prompt for administrator approval, even when the user has local admin rights. If the user clicks 'No' or the prompt is suppressed by Group Policy (e.g., via the 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' policy set to 'Elevate without prompting' or 'Prompt for consent'), the installer is blocked with the 'Your system administrator has blocked this program' message. This occurs because UAC treats the installer as requiring elevation, and the policy prevents the user from approving it.

Variation 2. A user reports that after a recent Windows update, they can no longer install a legacy application that requires write access to the Program Files folder. The user is a local administrator. What Windows security setting is most likely blocking the installation?

medium
  • A.BitLocker Drive Encryption
  • B.User Account Control (UAC)
  • C.Windows Defender Firewall
  • D.Group Policy Software Restrictions

Why B: User Account Control (UAC) is the Windows security feature that prompts for consent or credentials before allowing actions that require administrative privileges, even for local administrators. By default, UAC virtualizes write attempts to protected system locations like Program Files, redirecting them to a per-user virtual store, which can cause legacy applications that expect direct write access to fail. Disabling UAC or running the installer with explicit administrative rights (e.g., right-click 'Run as administrator') typically resolves the issue.

Keep practising

More 220-1202 practice questions

Last reviewed: Jul 4, 2026

Question Discussion

Share a tip, memory trick, or ask about the reasoning behind this question. Do not post real exam questions, leaked content, braindumps, or copyrighted exam material. Comments are moderated and may be removed without notice.

Loading comments…

Sign in to join the discussion.

This 220-1202 practice question is part of Courseiva's free CompTIA certification practice question bank. Courseiva provides original exam-style practice questions with explanations, topic-based practice, mock exams, readiness tracking, and study analytics to help learners prepare for the 220-1202 exam.