CompTIA A+ 220-1102 Certification Core 2 Exam Dumps and Practice Test Questions Set 2 Q16-30

Visit here for our full CompTIA 220-1102 exam dumps and practice test questions.

Question 16

A technician needs to install a new printer on a Windows 10 system. Which method ensures the printer is installed with the latest manufacturer’s drivers?

A) Using Windows Plug and Play automatically
B) Downloading drivers from the manufacturer’s website
C) Connecting the printer and letting Windows Update handle it
D) Installing the printer from the CD included in the box

Answer: B) Downloading drivers from the manufacturer’s website

Explanation:

Downloading drivers directly from the manufacturer’s website ensures that the printer is installed with the most recent and compatible drivers. Manufacturers release driver updates to resolve bugs, add functionality, and maintain compatibility with the latest operating system versions. By using the official source, the technician guarantees that the system receives the most reliable drivers, reducing the risk of installation issues or performance problems. This method also allows access to optional features and utilities that may not be available through automatic installation.

Using Windows Plug and Play automatically often allows the operating system to recognize the device and install a basic driver, but these drivers are generic and may not support advanced features such as duplex printing, scanning, or color calibration. While convenient, this method does not ensure the latest updates or full functionality, and relying solely on it can lead to limited printer performance.

Connecting the printer and letting Windows Update handle it provides a more updated driver than the built-in Plug and Play, but Windows Update may not always have the very latest driver available. Sometimes updates are delayed, and the functionality may still be incomplete compared to the official driver package. Additionally, if the manufacturer has released a critical update, relying on Windows Update may leave the system using an outdated version, which could cause stability or compatibility problems.

Installing the printer from the CD included in the box provides the driver version that was current at the time of manufacture. While this guarantees the printer will function, it is often outdated compared to online downloads, especially if the printer model is older or if the operating system has received significant updates since the CD’s creation. Using the CD may result in missing patches, slower performance, or incompatibility with updated system features.

The reasoning behind choosing the manufacturer’s website is that it offers the most up-to-date, fully featured, and tested driver version. This approach reduces troubleshooting time and ensures that the printer operates with maximum functionality while maintaining compatibility with current system updates. It is considered a best practice in IT support to always use the manufacturer’s resources for critical driver installation to minimize the risk of errors and performance issues.

Question 17

Which of the following is the primary purpose of the Windows BitLocker feature?

A) Protecting data through full disk encryption
B) Removing temporary files to free up space
C) Monitoring application performance
D) Managing user account permissions

Answer:  A) Protecting data through full disk encryption

Explanation:

BitLocker is a Windows security feature that provides full disk encryption to protect sensitive data on a computer. By encrypting the entire volume, BitLocker ensures that unauthorized users cannot access the data, even if the drive is removed and connected to another system. This is especially important for laptops and portable devices that are at higher risk of theft or loss. BitLocker also supports recovery keys, which allow authorized users to regain access in case of forgotten passwords or system errors, providing a secure and manageable method for protecting critical information.

Removing temporary files to free up space is the function of tools like Disk Cleanup. While important for maintaining system performance and storage efficiency, this process does not provide any data protection or encryption capabilities, which is the primary purpose of BitLocker. Temporary file management focuses on storage housekeeping rather than securing confidential data.

Monitoring application performance is handled by utilities such as Task Manager or Resource Monitor. These tools analyze CPU, memory, and disk usage to detect performance issues, but they do not encrypt or protect data. Performance monitoring is a system optimization task, not a security function like BitLocker, which is designed specifically to prevent unauthorized access.

Managing user account permissions is performed through the User Accounts control panel or local security policy settings. While permissions help protect files and system resources by defining access levels, they rely on the operating system’s authentication system rather than encrypting data. BitLocker provides security even if the OS authentication is bypassed or compromised, offering protection at the hardware level.

The reasoning behind choosing full disk encryption as the primary purpose is that BitLocker operates at a level that protects all files on a drive, regardless of location, type, or user account. Unlike file permissions or performance monitoring, encryption prevents unauthorized reading or copying of data in cases of theft, loss, or improper disposal of storage media. This makes BitLocker a crucial security feature for maintaining data confidentiality in enterprise and personal environments.

Question 18

A user reports that Windows is running slowly after installing a new application. Which troubleshooting step should be performed first?

A) Check system resource usage in Task Manager
B) Reinstall the operating system
C) Defragment the hard drive
D) Disable the firewall temporarily

Answer:  A) Check system resource usage in Task Manager

Explanation:

Checking system resource usage in Task Manager allows the technician to identify which processes or applications are consuming excessive CPU, memory, disk, or network resources. If the recently installed application is using an abnormal amount of resources, it may be the cause of system slowdown. Task Manager provides real-time monitoring and process management, enabling the user to terminate or investigate problematic applications. This step is efficient, non-invasive, and avoids unnecessary drastic measures like reinstalling the operating system.

Reinstalling the operating system is a last-resort troubleshooting step because it is time-consuming, potentially destructive, and unnecessary if the slowdown is caused by a single application. Operating system reinstallation may solve underlying issues, but it is not the first step since targeted troubleshooting can often resolve the problem more quickly.

Defragmenting the hard drive may improve disk access times on mechanical drives, but it is unlikely to solve immediate slowdowns caused by an application consuming system resources. On solid-state drives, defragmentation is not required and can even reduce drive lifespan. While useful for long-term maintenance, it is not the most effective first action.

Disabling the firewall temporarily does not address application resource usage. Firewalls primarily control network access and do not significantly affect CPU or memory consumption under normal circumstances. Disabling security features without a clear cause may introduce risk without solving the slowdown problem.

The reasoning for checking Task Manager first is that it directly targets the root cause by monitoring resource allocation in real time. This allows the technician to quickly identify applications responsible for performance issues, enabling corrective action such as updating, closing, or uninstalling the problematic software. It follows the principle of diagnosing before taking broad corrective measures, minimizing disruption and risk.

Question 19

Which type of Windows account provides the highest level of access to system settings and configurations?

A) Standard user
B) Guest user
C) Administrator
D) Power user

Answer: C) Administrator

Explanation:

Administrator accounts provide the highest level of access to system settings and configurations in Windows. Users with this type of account can install software, change system settings, manage other accounts, modify security policies, and access all files on the system. Administrator privileges are essential for system maintenance and troubleshooting, but should be granted sparingly to reduce security risks.

Standard user accounts have limited privileges. Users can run applications and make personal system changes, but cannot install software, modify security settings, or access other users’ data without elevated permissions. Standard accounts are safer for everyday use because they reduce the likelihood of accidental system changes or malware exploitation.

Guest user accounts are temporary and very restricted. They are intended for users who need minimal access, such as visitors. Guest accounts cannot install software, change settings, or access private files, making them the least privileged account type.

Power user accounts were a legacy feature in older Windows versions. They offered more privileges than standard accounts but fewer than administrators. This account type is rarely used in modern Windows environments and has been largely replaced by controlled use of standard and administrator accounts with User Account Control (UAC).

The reasoning for selecting administrator accounts is that they have unrestricted access to system resources, files, and settings. This level of control is necessary for managing software installation, security configurations, and troubleshooting, making it the correct choice for scenarios requiring full system access.

Question 20

A technician is configuring a wireless router for optimal security. Which of the following should be enabled?

A) WPA3 encryption
B) WEP encryption
C) SSID broadcast enabled
D) MAC filtering disabled

Answer:  A) WPA3 encryption

Explanation:

WPA3 encryption is the most secure wireless encryption standard currently available. It provides stronger protections against password guessing, uses forward secrecy to prevent data compromise if a key is intercepted, and improves security for open networks through individualized encryption. Enabling WPA3 ensures that connected devices are protected from common wireless attacks, such as brute-force password attempts and eavesdropping.

WEP encryption is outdated and insecure. It can be easily cracked using widely available tools, and it does not offer modern security mechanisms. Using WEP exposes the network to significant vulnerabilities and is not recommended for any contemporary wireless setup.

SSID broadcast enabled allows the network name to be visible to devices. While it is useful for ease of connection, it does not enhance security. Disabling SSID broadcast can hide the network from casual scanning, but it is not a substitute for proper encryption, as attackers can still detect hidden networks using network scanning tools.

MAC filtering disabled has no impact on the core encryption or security of the network. MAC filtering can limit access to specific devices, but it is easily bypassed by spoofing MAC addresses. Disabling it is not a primary concern if strong encryption like WPA3 is enabled.

The reasoning is that encryption is the fundamental element of wireless security. WPA3 provides robust protection against modern threats, making it the most effective security measure for wireless networks. Other steps, while helpful, cannot replace the essential role of strong encryption.

Question 21

A user reports that their laptop screen flickers intermittently. Which of the following should a technician check first?

A) Update the graphics driver
B) Replace the laptop battery
C) Disable Bluetooth
D) Clear the temporary files

Answer:  A) Update the graphics driver

Explanation:

Intermittent screen flickering on a laptop is often caused by outdated, corrupted, or incompatible graphics drivers. Updating the graphics driver ensures that the operating system communicates correctly with the video hardware and that the display operates smoothly. Modern graphics drivers are regularly updated to fix bugs, improve performance, and maintain compatibility with operating system updates. By updating the driver first, the technician addresses the most common software-related cause of screen flickering without making unnecessary hardware changes.

Replacing the laptop battery would be relevant if the laptop were experiencing power-related issues, such as sudden shutdowns, inability to charge, or reduced battery life. While low battery levels can sometimes affect system performance, they do not directly cause screen flickering. A new battery would not fix driver-related or display connection problems, so this step is not the first action.

Disabling Bluetooth is unrelated to display performance. Bluetooth functionality is for wireless peripherals such as mice, keyboards, and headsets. Turning it off would not resolve a screen flickering problem, as this issue originates in video output or software communication with the graphics adapter. Disabling Bluetooth is an unnecessary step in this scenario.

Clearing temporary files may improve general system performance by freeing disk space and reducing minor slowdowns, but it has no impact on the video driver or the display hardware. Temporary files do not influence the display signal or refresh rate, so this step would not resolve intermittent flickering.

The reasoning is that screen flickering is most often caused by software conflicts, outdated drivers, or incorrect display settings. By updating the graphics driver first, the technician targets the root cause efficiently, reduces downtime, and avoids unnecessary hardware replacements. This approach follows the principle of addressing software-related solutions before making physical modifications, ensuring troubleshooting is effective and minimally invasive.

Question 22

A technician wants to restrict access to a computer by requiring users to authenticate using a fingerprint. Which Windows feature should be used?

A) BitLocker
B) Windows Hello
C) SmartScreen
D) Device Guard

Answer: B) Windows Hello

Explanation:

Windows Hello is a biometric authentication system that allows users to sign in using fingerprint, facial recognition, or iris scanning. It provides a fast, secure, and convenient way to access Windows devices without relying solely on passwords. Fingerprint authentication ensures that only authorized users can access the computer, adding an extra layer of security. Windows Hello is integrated with the operating system and works with supported hardware, allowing administrators to implement strong authentication policies easily.

BitLocker is a full disk encryption tool that protects data from unauthorized access if the drive is removed or compromised. While it enhances security by encrypting storage, it does not provide biometric authentication or replace login credentials. BitLocker secures data at rest but does not control interactive user authentication at the login screen.

SmartScreen protects users from phishing attacks and malicious websites by warning them about potentially harmful content. While important for web security, it does not provide local authentication methods such as fingerprints or facial recognition, making it unrelated to the requirement in this scenario.

Device Guard ensures that only trusted applications can run on a Windows system by using hardware-based security and policy enforcement. Although it strengthens overall system security, it does not offer user-level authentication using biometrics. Device Guard prevents malicious applications from executing, but does not verify the identity of the person logging into the system.

The reasoning is that Windows Hello directly addresses the need for secure, convenient user authentication using fingerprints. Unlike encryption tools or security enforcement mechanisms, Windows Hello focuses on interactive access control, ensuring that only authorized individuals can log into the computer. It integrates with the operating system seamlessly, supports multiple biometric modalities, and is the most effective solution for this requirement.

Question 23

A user reports that their computer frequently restarts randomly. Which of the following should be checked first?

A) Overheating of CPU or GPU
B) Outdated monitor firmware
C) Recycled temporary files
D) Inactive antivirus software

Answer:  A) Overheating of CPU or GPU

Explanation:

Frequent random restarts are often caused by hardware overheating, particularly the CPU or GPU. Modern systems include thermal protection mechanisms that shut down or restart the computer to prevent permanent damage when temperature thresholds are exceeded. A technician should check the system’s temperatures, ensure that fans are functioning correctly, clean dust from cooling components, and verify that thermal paste is properly applied. Addressing overheating prevents hardware failure and resolves instability caused by thermal throttling.

Outdated monitor firmware is unlikely to cause system restarts. While monitors may occasionally require firmware updates to fix display issues, a firmware update would not affect the operating system’s stability or trigger random restarts. Monitors primarily display output and do not control CPU or GPU thermal conditions.

Recycled temporary files are irrelevant to system crashes. While accumulated temporary files may affect storage space or slow down the system, they do not lead to sudden restarts. Clearing temporary files is a maintenance step, not a solution for hardware-induced instability.

Inactive antivirus software might increase vulnerability to malware infections, which could indirectly affect system performance, but it does not directly cause random restarts. Malware-induced restarts are possible but less common than hardware-related issues. Checking temperatures first is faster and more deterministic in identifying the root cause.

The reasoning is that random restarts are most frequently linked to thermal issues with critical hardware components. By prioritizing the investigation of CPU and GPU temperatures, the technician targets the most likely cause, ensuring the system remains stable and hardware components are protected from thermal damage. This approach follows the principle of addressing hardware and environmental factors before assuming software or malware issues.

Question 24

Which of the following Windows tools can be used to recover accidentally deleted files?

A) Recycle Bin
B) Disk Defragmenter
C) Task Scheduler
D) Device Manager

Answer:  A) Recycle Bin

Explanation:

The Recycle Bin is a temporary storage location for deleted files in Windows. When a user deletes a file, it is moved to the Recycle Bin rather than being permanently removed from the storage drive. This allows users to restore accidentally deleted files easily. Files in the Recycle Bin retain their original locations and can be restored with a simple right-click and selection of the restore option. Using the Recycle Bin is the first line of recovery for accidental deletions, providing an intuitive and user-friendly method of file restoration.

Disk Defragmenter is used to reorganize fragmented data on mechanical drives to improve disk access performance. It does not store deleted files or provide file recovery functionality. While important for system optimization, it is unrelated to restoring deleted files.

Task Scheduler allows users to automate tasks such as software execution, system scans, and maintenance operations. It does not maintain copies of deleted files or offer recovery options. It is focused on scheduling and automation, not file recovery.

Device Manager is used for managing hardware components and their drivers. It allows technicians to troubleshoot hardware problems, update drivers, and view device properties. Device Manager does not interact with the file system in a way that supports file restoration.

The reasoning is that the Recycle Bin is specifically designed to prevent permanent loss of files during accidental deletions. By retaining files in a temporary location, it provides users with an easy and accessible method to restore data. This makes it the most direct and efficient solution for recovering deleted files before using advanced recovery tools.

Question 25

Which Windows feature allows users to create a backup of system settings and restore them in case of failure?

A) System Restore
B) Windows Defender
C) Device Guard
D) File History

Answer:  A) System Restore

Explanation:

System Restore allows users to create restore points that capture system settings, configuration files, installed programs, and registry information. If a system becomes unstable due to software installation, driver updates, or configuration changes, the user can revert the system to a previous state using these restore points. System Restore does not affect personal files, making it a safe method for recovering system functionality without data loss. This tool is especially useful for quickly addressing issues caused by software conflicts, failed updates, or misconfigured settings.

Windows Defender protects against malware, viruses, and other security threats. While it enhances system security, it does not allow for creating snapshots of system configurations or restoring system settings. Its focus is on active threat detection and prevention rather than system rollback.

Device Guard is a security feature designed to ensure that only trusted applications can run on a Windows system. It enforces application execution policies but does not create backups of system configurations or provide rollback functionality. Device Guard strengthens security but does not offer recovery from system instability caused by software changes.

File History is used for backing up personal files, such as documents, pictures, and videos. While it protects data files by creating incremental backups, it does not restore system configurations, drivers, or registry settings. File History is data-centric, whereas System Restore is configuration-centric.

The reasoning is that System Restore addresses the recovery of system settings rather than personal files. Creating restore points allows users to revert changes that may compromise system stability without affecting user data. This makes it the most suitable tool for recovering from software failures, misconfigurations, or update issues, aligning directly with the requirement to restore system settings.

Question 26

A user complains that their Windows 10 system is slow when starting up. Which of the following is the most effective first step to improve boot performance?

A) Disable unnecessary startup programs using Task Manager
B) Increase screen resolution
C) Uninstall Microsoft Office
D) Change the desktop background

Answer:  A) Disable unnecessary startup programs using Task Manager

Explanation:

Slowness during system startup is a common issue caused by the number of programs and services that automatically load when Windows boots. Disabling unnecessary startup programs through Task Manager is the most effective first step because it directly targets the processes that consume CPU, memory, and disk resources at boot time. By opening Task Manager and navigating to the Startup tab, the technician can view a list of applications configured to start with Windows, including their startup impact rating, which indicates the level of resources they consume during boot. Programs that are not essential can be disabled without uninstalling them, reducing boot times and improving system responsiveness.

Increasing the screen resolution affects how many pixels the display renders and can influence graphical performance when running applications, particularly games or multimedia software. However, changing the screen resolution does not affect which programs or services load during system startup. The startup process is controlled by the operating system, startup programs, and background services, not the display configuration. Therefore, this action would not improve boot times or reduce resource consumption during startup. While it may affect overall system performance in certain contexts, it is not a targeted solution for slow boot issues.

Uninstalling Microsoft Office might reduce some disk usage and possibly free up system resources, but Office is generally not a high-impact startup program. Most Office applications only load when the user opens them, and uninstalling the suite is a drastic measure that does not address the primary cause of slow boot times. Removing large applications is unnecessary if they are not contributing significantly to startup delays. Additionally, uninstalling Office would impact productivity by removing essential applications, so it is not the first step in troubleshooting boot performance.

Changing the desktop background is purely cosmetic and has no impact on system boot times or resource usage. While complex backgrounds, especially animated or high-resolution images, may slightly increase memory usage after login, they do not influence the startup sequence or the loading of programs. Adjusting the background may provide a visual preference for the user, but it does not address the underlying cause of slow boot performance.

The reasoning for selecting disabling unnecessary startup programs as the first step is that it provides a direct method to improve boot efficiency by reducing resource contention. Task Manager allows the technician to make informed decisions based on startup impact ratings, enabling targeted optimization without uninstalling software or changing unrelated system settings. By focusing on programs that actively load during startup, the user experiences immediate improvement in boot times, making it the most effective and non-invasive solution. Optimizing startup programs follows the principle of diagnosing and correcting high-impact processes first, which is a standard best practice in system administration and support for Windows systems. This approach balances performance improvement with minimal risk, avoids unnecessary software removal, and ensures that the system remains fully functional while reducing startup latency.

Question 27

A technician is troubleshooting a computer that fails to connect to a Wi-Fi network. Which of the following steps should be performed first?

A) Verify that the wireless adapter is enabled
B) Replace the network card immediately
C) Format the hard drive
D) Install additional RAM

Answer:  A) Verify that the wireless adapter is enabled

Explanation:

When a computer fails to connect to a Wi-Fi network, the first step should be to verify that the wireless adapter is enabled. Modern laptops and desktops often have physical switches or function key combinations that allow users to disable and enable the wireless adapter. Additionally, Windows provides settings under the Network & Internet configuration where the adapter can be toggled on or off. If the adapter is disabled, the system will not detect any wireless networks, and attempts to connect will fail. Checking the adapter status is quick, non-invasive, and frequently resolves connectivity issues without requiring hardware replacement or other drastic measures.

Replacing the network card immediately is an unnecessary step at this stage. While hardware failure is possible, it is less common than a simple software or configuration issue, such as a disabled adapter. Replacing the network card without first verifying its operational status could waste time and resources. It is standard troubleshooting practice to confirm that the hardware is functioning and correctly enabled before attempting replacement, as most connectivity issues are resolved through settings or driver adjustments.

Formatting the hard drive is an extreme measure that is completely unrelated to a Wi-Fi connectivity problem. Hard drive formatting erases all data and requires the reinstallation of the operating system and applications. Connectivity issues typically do not result from file system problems, so this action would be destructive, unnecessary, and inefficient as a first step. It is not a recommended approach for resolving network adapter issues.

Installing additional RAM does not affect wireless connectivity. While adding RAM may improve system performance or allow more applications to run simultaneously, it does not enable or repair the wireless adapter. Wi-Fi connectivity relies on the network adapter, drivers, and configuration settings, not the system’s memory capacity, so this action would not resolve the issue.

The reasoning is that verifying that the wireless adapter is enabled addresses the most common cause of Wi-Fi connectivity failures efficiently. This step is quick, non-destructive, and often resolves the issue without further intervention. Ensuring the adapter is active allows the operating system to detect available networks, apply the correct drivers, and establish a connection. Following this step ensures that troubleshooting begins with the simplest, most likely causes before escalating to hardware replacement or more complex procedures. It adheres to best practices in IT support by prioritizing confirmation of basic functionality before performing intrusive actions, ensuring minimal disruption while maximizing the likelihood of resolving the issue effectively. By starting with enabling the adapter, the technician can then proceed to investigate driver issues, network configuration, or hardware faults if the problem persists, making this a logical and methodical approach to wireless troubleshooting.

Question 28

A user reports that their Windows computer frequently displays pop-up ads, even when the browser is closed. Which of the following should a technician check first?

A) Scan for malware or adware using antivirus software
B) Update the operating system
C) Reinstall Microsoft Office
D) Clear the Recycle Bin

Answer:  A) Scan for malware or adware using antivirus software

Explanation:

Pop-up ads appearing outside of a web browser typically indicate the presence of adware or malware on the system. The first step a technician should take is to scan the computer using antivirus or anti-malware software. Modern antivirus programs can detect, quarantine, or remove malicious programs that generate pop-ups or other unwanted behaviors. Running a full system scan ensures that both files and running processes are examined, increasing the likelihood of identifying the source of the issue. This step is non-invasive, does not risk data loss, and often resolves the problem without further interventions. By targeting the root cause, the technician addresses the abnormal behavior directly.

Updating the operating system is important for overall security and performance, but it will not directly remove adware or malware already present on the system. While updates may patch vulnerabilities that malware could exploit in the future, they do not actively eliminate threats that are already causing pop-ups. Therefore, updating the OS is a maintenance task, not a primary troubleshooting action for active malware issues.

Reinstalling Microsoft Office is unrelated to pop-up ads. Office applications are used for productivity tasks such as word processing, spreadsheets, and email management. Malicious adware typically does not rely on Office programs to function, so reinstalling Office would not address the problem and would unnecessarily disrupt the user’s productivity by requiring reinstallation and reconfiguration of software and user settings.

Clearing the Recycle Bin has no impact on malware or adware that generates pop-up ads. The Recycle Bin is a temporary storage area for deleted files, and clearing it only frees up disk space. Adware typically operates from system directories, temporary files, or registry entries, so removing files from the Recycle Bin does not remove the malicious programs responsible for the pop-ups.

The reasoning for scanning for malware or adware first is that it directly targets the root cause of the problem, which is malicious software. By using antivirus software, the technician can identify active threats, remove harmful files, and prevent further unwanted behaviors. This approach is safe, methodical, and adheres to IT best practices, which recommend starting with non-invasive solutions before making system changes. Addressing malware ensures both system stability and user security, which is essential when troubleshooting any persistent abnormal behavior like pop-up ads. A thorough malware scan often resolves the issue completely and prevents potential escalation, such as credential theft, unauthorized access, or further software infections, making it the most effective first step in resolving pop-up ad problems.

Question 29

A technician needs to secure a Windows laptop that will be used in a public location. Which of the following actions provides the best protection against unauthorized access if the laptop is lost or stolen?

A) Enable BitLocker full disk encryption
B) Reduce screen brightness
C) Disable the wireless adapter
D) Create a new user account

Answer:  A) Enable BitLocker full disk encryption

Explanation:

Enabling BitLocker full disk encryption provides the best protection for a laptop that may be lost or stolen. BitLocker encrypts the entire drive, ensuring that all files, folders, and system data are unreadable without proper authentication, such as a password or recovery key. This prevents unauthorized users from accessing sensitive information, even if they remove the drive and attempt to read it on another system. Full disk encryption protects all user data, operating system files, and application configurations, making it highly effective for securing laptops that are at risk of physical theft.

Reducing screen brightness only affects display visibility and power consumption. While lower brightness may help preserve battery life or reduce eye strain, it does not secure the laptop or prevent unauthorized access. Adjusting the screen is unrelated to protecting data from theft or ensuring system security.

Disabling the wireless adapter may prevent immediate network connectivity, reducing the risk of remote attacks, but it does not protect the data stored on the laptop. If the device is stolen, a disabled wireless adapter does not prevent an attacker from accessing the physical storage or booting the laptop with alternative media. This measure alone is insufficient for comprehensive security in public environments.

Creating a new user account provides a separate login for different users, which can help manage access levels, but it does not encrypt or protect the underlying data. If someone gains physical access to the laptop, they could bypass a standard user account by using administrative privileges, booting from external media, or removing the storage device. Creating a new account is a useful practice for system management, but it does not address the primary security risk associated with loss or theft.

The reasoning for enabling BitLocker is that it provides a comprehensive, hardware-based solution for protecting sensitive data. Unlike measures such as account creation or disabling wireless, BitLocker ensures that the drive itself is secure, regardless of who has physical possession of the laptop. It protects all data and is resistant to tampering or unauthorized attempts to read files. This approach aligns with best practices for mobile device security in public or unsecured locations, offering a level of protection that other measures cannot achieve on their own. By encrypting the entire disk, users and organizations mitigate the risks of data breaches, identity theft, and unauthorized access in the event of theft, making it the most effective and recommended security solution for laptops used in public settings.

Question 30

A user reports that their Windows system frequently prompts for credentials when accessing network resources. Which of the following actions should be performed to reduce repeated authentication requests?

A) Enable Credential Manager to save network passwords
B) Disable the firewall
C) Reinstall the operating system
D) Increase virtual memory

Answer:  A) Enable Credential Manager to save network passwords

Explanation:

Enabling Credential Manager allows Windows to securely store network credentials such as usernames and passwords. When accessing network resources, Credential Manager automatically supplies the saved credentials, reducing repeated prompts and improving user experience. This tool encrypts stored credentials and ensures they are only accessible to authorized users, providing convenience without compromising security. Credential Manager integrates with Windows authentication protocols, allowing seamless access to shared drives, servers, or applications without repeatedly entering login information, making it the most effective first step for addressing frequent authentication prompts.

Disabling the firewall in a Windows system is sometimes suggested as a troubleshooting step when users encounter repeated authentication requests, such as being prompted to enter credentials for network drives, shared folders, or online resources. However, this approach is fundamentally misguided because the firewall is primarily designed to regulate incoming and outgoing network traffic to protect the system from unauthorized access, malware, and external attacks. Its role is to enforce security policies and prevent potentially harmful connections from reaching the system, rather than managing how Windows stores or applies user credentials. When Windows repeatedly prompts for credentials, the root causes are usually related to authentication settings, network policies, cached credentials, or server-side configurations. Problems can arise if the saved credentials are outdated or incorrect, if the network resource requires a different authentication method, or if there are inconsistencies between the domain or local accounts involved. In these cases, addressing the issue requires managing stored credentials via the Credential Manager, ensuring proper permissions on the network resource, checking group policies, or verifying that the correct authentication protocol is being used. Turning off the firewall does not influence any of these mechanisms, so it will not resolve repeated login prompts. Instead, disabling the firewall removes a critical layer of security and exposes the system to multiple risks, including unauthorized access from external networks, malware intrusion, and potential exploitation of open ports. Even if the firewall is not the cause of authentication problems, turning it off creates vulnerabilities that could lead to significant security incidents. Therefore, the recommended approach is to troubleshoot authentication issues through appropriate means, such as verifying credentials, clearing or updating saved passwords in the Credential Manager, checking network and sharing settings, and ensuring that network policies or server configurations are consistent with the client system. Firewall settings can remain intact during this process, preserving the security protections that prevent malicious traffic from entering the system. In conclusion, disabling the firewall is an ineffective and unsafe method for addressing repeated authentication requests in Windows. The firewall’s function is security, not credential management, and turning it off introduces more risk than benefit. Proper resolution requires targeted troubleshooting of authentication settings, network permissions, and stored credentials, ensuring that connectivity issues are resolved without compromising system protection.

Reinstalling the operating system is a drastic and unnecessary measure in this context. Frequent credential prompts are typically related to configuration issues or credential management, not fundamental system corruption. Reinstallation would involve significant time, risk of data loss, and reconfiguration effort, and it does not guarantee resolution if network authentication policies are the underlying cause. Therefore, it should only be considered after less invasive troubleshooting steps.

Increasing virtual memory adjusts system performance settings and affects how the operating system uses disk space to supplement physical RAM. While it may improve system responsiveness under heavy loads, it does not impact authentication processes or reduce credential prompts. Virtual memory changes are unrelated to network resource access or stored credentials and would not address the core issue.

The reasoning is that enabling Credential Manager directly targets the underlying cause of repeated network login prompts by securely storing credentials for automatic submission. This approach is safe, efficient, and aligns with Windows best practices, ensuring that authentication requests are handled seamlessly while maintaining system security. By focusing on credential management rather than invasive measures like reinstallation or disabling security features, the technician resolves the issue effectively and improves the overall user experience without compromising system integrity.