最新(2026)CompTIA 220-1102試験問題集
最適な練習法にはCompTIA 220-1102試験の素晴らしい220-1102試験問題PDF
CompTIA 220-1102 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
質問 # 218
A company implemented a BYOD policy and would like to reduce data disclosure caused by malware that may infect these devices. Which of the following should the company deploy to address these concerns?
- A. UAC
- B. LDAP
- C. SSO
- D. MDM
正解:D
解説:
MDM stands for mobile device management, which is a type of software solution that allows remote management and security of mobile devices. MDM can help a company reduce data disclosure caused by malware that may infect these devices by enforcing security policies, such as encryption, password protection, antivirus software, and remote wipe. MDM can also monitor and control the access of personal devices to corporate data and networks. UAC stands for user account control, which is a feature of Windows that prompts users for permission or an administrator password before making changes that affect the system. UAC may not be effective in preventing malware infection or data disclosure on personal devices. LDAP stands for lightweight directory access protocol, which is a protocol for accessing and managing information stored in a directory service, such as user names and passwords. LDAP does not directly address the issue of malware infection or data disclosure on personal devices. SSO stands for single sign-on, which is a feature that allows users to access multiple applications or services with one set of credentials. SSO may not prevent malware infection or data disclosure on personal devices, and may even increase the risk if the credentials are compromised.
https://www.nist.gov/news-events/news/2021/03/mobile-device-security-bring-your-own-device-byod-draft-sp-1
質問 # 219
An IT security team is implementing a new Group Policy that will return a computer to the login after three minutes. Which of the following BEST describes the change in policy?
- A. User permission
- B. Login lockout attempts
- C. Login times
- D. Screen lock
正解:D
解説:
Explanation
Screen lock is a feature that returns a computer to the login screen after a period of inactivity, requiring the user to enter their credentials to resume their session. Screen lock can be configured using Group Policy settings, such as Screen saver timeout and Interactive logon: Machine inactivity limit. Screen lock can help prevent unauthorized access to a computer when the user is away from their desk. Login times are not a feature that returns a computer to the login screen, but a measure of how long it takes for a user to log in to a system. User permission is not a feature that returns a computer to the login screen, but a set of rights and privileges that determine what a user can do on a system. Login lockout attempts are not a feature that returns a computer to the login screen, but a security policy that locks out a user account after a number of failed login attempts. https://woshub.com/windows-lock-screen-after-idle-via-gpo/
質問 # 220
A technician downloads a validated security tool and notes the vendor hash of a58e87a2. When the download is complete, the technician again validates the hash, but the value returns as 2a876a7d3. Which of the following is the MOST likely cause of the issue?
- A. Modified file
- B. Private-browsing mode
- C. Invalid certificate
- D. Browser cache
正解:A
解説:
The most likely cause of the issue of having different hash values for a downloaded security tool is a modified file. A hash value is a unique and fixed-length string that is generated from an algorithm that processes data or files. A hash value can be used to verify the integrity and authenticity of data or files by comparing it with a known or expected value. If the hash values do not match, it means that the data or file has been altered or corrupted in some way. A modified file may result from intentional or unintentional changes, such as editing, encryption, compression or malware infection. Private-browsing mode is a feature that allows users to browse the web without storing any browsing history, cookies or cache on their browser. Private-browsing mode does not affect the hash value of a downloaded file but only how the browser handles user data. Invalid certificate is an error that occurs when a website or a server does not have a valid or trusted digital certificate that proves its identity and secures its communication. Invalid certificate does not affect the hash value of a downloaded file but only how the browser verifies the website or server's credibility. Browser cache is a temporary storage that stores copies of web pages, images and other content that users have visited on their browser.
質問 # 221
A user enabled a mobile device's screen lock function with pattern unlock. The user is concerned someone could access the mobile device by repeatedly attempting random patterns to unlock the device. Which of the following features BEST addresses the user's concern?
- A. Device encryption
- B. Anti-maIware
- C. Remote wipe
- D. Failed login restrictions
正解:C
解説:
Explanation
The feature that BEST addresses the user's concern is remote wipe. This is because remote wipe allows the user to erase all data on the mobile device if it is lost or stolen, which will prevent unauthorized access to the device1.
質問 # 222
Which of the following Is used to identify potential issues with a proposed change poor lo implementation?
- A. End-user acceptance
- B. Rollback plan
- C. Request form
- D. Sandbox testing
正解:D
解説:
Sandbox testing is a method of identifying potential issues with a proposed change prior to implementation. It involves creating a simulated or isolated environment that mimics the real system and applying the change to it. This can help to verify that the change works as expected and does not cause any errors or conflicts.
Request form, rollback plan and end-user acceptance are other components of a change management process, but they do not involve identifying issues with a change. Verified References:
https://www.comptia.org/blog/what-is-sandbox-testing https://www.comptia.org/certifications/a
質問 # 223
When a user is browsing a website on a smartphone, a pop-up appears. The pop-up states that the system has been breached and directs the user to an application to resolve the breach. Which of the following should the user do?
- A. Analyze the smartphone to find the source of the breach
- B. Replace the smartphone
- C. Download and install the application to resolve the issue
- D. Close the website and ignore the pop-up
正解:D
解説:
Comprehensive and Detailed In-Depth
This is a scareware scam that attempts to trick users into installing malicious applications. The best action is to close the website and ignore the pop-up.
B . Replace the smartphone - Incorrect. The phone is likely not compromised; it is just displaying a fake warning.
C . Download and install the application to resolve the issue - Incorrect. Doing so could infect the device with malware.
D . Analyze the smartphone to find the source of the breach - Unnecessary, as there is no real breach.
質問 # 224
An incident handler needs to preserve evidence for possible litigation. Which of the following will the incident handler MOST likely do to preserve the evidence?
- A. Inform law enforcement
- B. Contact the cyber insurance company
- C. Clone any impacted hard drives
- D. Encrypt the files
正解:C
解説:
Explanation
The incident handler should clone any impacted hard drives to preserve evidence for possible litigation1
質問 # 225
A technician is setting up a SOHO wireless router. The router is about ten years old. The customer would like the most secure wireless network possible. Which of the following should the technician configure?
- A. WPA2 with AES
- B. WPA2 with TKIP
- C. WPA3withAES-256
- D. WPA3 with AES-128
正解:A
解説:
This is because WPA2 with AES is the most secure wireless network configuration that is available on a ten-year-old SOHO wireless router.
質問 # 226
An implementation specialist is replacing a legacy system at a vendor site that has only one wireless network available. When the specialist connects to Wi-Fi. the specialist realizes the insecure network has open authentication. The technician needs to secure the vendor's sensitive data. Which of the following should the specialist do FIRST to protect the company's data?
- A. Connect to the vendor's network using a VPN.
- B. Configure MFA on the network.
- C. Change the network location to private.
- D. Manually configure an IP address, a subnet mask, and a default gateway.
正解:A
解説:
The first thing that the specialist should do to protect the company's data on an insecure network with open authentication is to connect to the vendor's network using a VPN. A VPN stands for Virtual Private Network and is a technology that creates a secure and encrypted connection over a public or untrusted network. A VPN can protect the company's data by preventing eavesdropping, interception or modification of the network traffic by unauthorized parties. A VPN can also provide access to the company's internal network and resources remotely. Manually configuring an IP address, a subnet mask and a default gateway may not be necessary or possible if the vendor's network uses DHCP to assign network configuration parameters automatically. Manually configuring an IP address, a subnet mask and a default gateway does not protect the company's data from network attacks or threats. Changing the network location to private may not be advisable or effective if the vendor's network is a public or untrusted network. Changing the network location to private does not protect the company's data from network attacks or threats. Configuring MFA on the network may not be feasible or sufficient if the vendor's network has open authentication and does not support or require MFA. Configuring MFA on the network does not protect the company's data from network attacks or threats. References: CompTIA A+ Core 2 (220-1002) Certification Exam Objectives Version 4.0, Domain
3.3
質問 # 227
A user is setting up a computer for the first time and would like to create a secondary login with permissions that are different than the primary login. The secondary login will need to be protected from certain content such as games and websites. Which of the following Windows settings should the user utilize to create the secondary login?
- A. Shared resources
- B. Accounts
- C. Personalization
- D. Privacy
正解:B
解説:
Explanation
To create a secondary login with different permissions in Windows 10, the user should utilize the Accounts setting. Here are the steps to create a new user account with different permissions:
Right-click the Windows Start menu button.
Select Control Panel.
Select User Accounts.
Select Manage another account.
Select Add a new user in PC settings.
Use the Accounts dialog box to configure a new account.1
質問 # 228
A technician is creating a tunnel that hides IP addresses and secures all network traffic. Which of the following protocols is capable of enduring enhanced security?
- A. DNS
- B. VPN
- C. SSH
- D. IPS
正解:B
解説:
A VPN (virtual private network) is a protocol that creates a secure tunnel between two devices over the internet, hiding their IP addresses and encrypting their traffic. DNS (domain name system) is a protocol that translates domain names to IP addresses. IPS (intrusion prevention system) is a device that monitors and blocks malicious network traffic. SSH (secure shell) is a protocol that allows remote access and command execution on another device. Verified Reference: https://www.comptia.org/blog/what-is-a-vpn https://www.comptia.org/certifications/a
質問 # 229
The user often hosts meetings from a Windows desktop, and meeting participants ask the user to make the text larger when the user shares the computer screen. When not in meetings, the user wants the text be smaller for work tasks. Which of the following is the most efficient way to change text font size?
- A. Addinga second monitor to the user's desktop and increase the font size for only that display
- B. Addinga local user account, which has a larger font size set, for the user to log In toduring meetings
- C. Using display settings to adjust the text size during meetings
- D. Issuinga laptop to the user with increased font size to be used only for meetings
正解:C
解説:
Changing the text size efficiently for different scenarios, such as meetings and regular work tasks, can be managed directly through the Windows display settings. This method is both quick and easily reversible, making it the most efficient solution compared to the other options provided.
Option A: Issuing a laptop to the user with increased font size to be used only for meetingsThis option is not efficient as it requires additional hardware and setup time, which is impractical for simply adjusting text size.
Option B: Using display settings to adjust the text size during meetingsCorrect Answer. Windows provides built-in functionality to adjust the text size on the display. This can be accessed via:
Windows Settings > System > Display.
Under "Scale and layout," you can change the size of text, apps, and other items. This method allows for quick changes and can be reverted just as quickly after meetings.
Reference:
Option C: Adding a local user account, which has a larger font size set, for the user to log in to during meetingsThis approach involves additional steps of logging out and logging back in, which is less efficient than simply adjusting the display settings.
Option D: Adding a second monitor to the user's desktop and increase the font size for only that displayWhile this can be a solution, it is not the most efficient way as it involves additional hardware and configuration. It's more suited for scenarios requiring constant dual-display use rather than just changing text size occasionally.
質問 # 230
Ann, a CEO, has purchased a new consumer-class tablet for personal use, but she is unable to connect it to the company's wireless network. All the corporate laptops are connecting without issue. She has asked you to assist with getting the device online.
INSTRUCTIONS
Review the network diagrams and device configurations to determine the cause of the problem and resolve any discovered issues.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.








正解:
解説:
See the Explanation below:
Explanation
Graphical user interface, application Description automatically generated
Click on 802.11 and Select ac
Graphical user interface, application Description automatically generated Click on SSID and select CORP Graphical user interface, text, application, Teams Description automatically generated
Click on Frequency and select 5GHz
A picture containing background pattern Description automatically generated
At Wireless Security Mode, Click on Security Mode
Graphical user interface, text, application Description automatically generated
Select the WPA2
Graphical user interface, application, Teams Description automatically generated with medium confidence
Ann needs to connect to the BYOD SSID, using 2.4GHZ. The selected security method chose should be WPA PSK, and the password should be set to TotallySecret.
Graphical user interface, application Description automatically generated
質問 # 231
A user is being directed by the help desk to look up a Windows PC's network name so the help desk can use a remote administration tool to assist the user. Which of the following commands would allow the user to give the technician the correct information? (Select TWO).
- A. arp -a
- B. netstat /?
- C. hostname
- D. ipconfig /all
- E. nslookup localhost
- F. ping :: 1
正解:C、D
質問 # 232
A user called the help desk lo report an Issue with the internet connection speed on a laptop. The technician thinks that background services may be using extra bandwidth. Which of the following tools should the technician use to investigate connections on the laptop?
- A. netstat
- B. net user
- C. nslookup
- D. net use
正解:A
解説:
netstat is a tool that can be used to investigate connections on a Windows machine. It displays information about the active TCP connections, listening ports, routing tables, network statistics, etc. nslookup is a tool that can be used to query DNS servers and resolve domain names to IP addresses. net use is a tool that can be used to connect or disconnect network drives or printers. net user is a tool that can be used to create or modify user accounts on a Windows machine. Verified References: https://www.comptia.org/blog/what-is-netstat
https://www.comptia.org/certifications/a
質問 # 233
A large organization is researching proprietary software with vendor support for a multiuser environment. Which of the following EULA types should be selected?
- A. Corporate
- B. Perpetual
- C. Open-source
- D. Personal
正解:A
解説:
A corporate EULA is a type of end-user license agreement that is designed for a large organization that needs to use proprietary software with vendor support for a multiuser environment. A corporate EULA typically grants the organization a volume license that allows it to install and use the software on multiple devices or servers, and to distribute the software to its employees or affiliates. A corporate EULA also usually provides the organization with technical support, maintenance, updates, and warranty from the software vendor, as well as some customization options and discounts. A corporate EULA may also include terms and conditions that specify the rights and obligations of both parties, such as confidentiality, liability, indemnification, termination, and dispute resolution12.
A corporate EULA is a better option than the other choices because:
A perpetual EULA (B) is a type of end-user license agreement that grants the user a permanent and irrevocable license to use the software, without any time limit or expiration date. However, a perpetual EULA does not necessarily include vendor support, updates, or warranty, and it may not allow the user to install the software on multiple devices or servers, or to distribute the software to other users. A perpetual EULA may also be more expensive than a corporate EULA, as it requires a one-time payment upfront, rather than a recurring subscription fee34.
An open-source EULA is a type of end-user license agreement that grants the user a license to use, modify, and redistribute the software, which is publicly available and free of charge. However, an open-source EULA does not provide any vendor support, maintenance, updates, or warranty, and it may impose some restrictions or obligations on the user, such as disclosing the source code, attributing the original author, or using a compatible license for derivative works. An open-source EULA may not be suitable for a large organization that needs proprietary software with vendor support for a multiuser environment56.
A personal EULA (D) is a type of end-user license agreement that grants the user a license to use the software for personal, non-commercial purposes only. A personal EULA may limit the number of devices or servers that the user can install the software on, and prohibit the user from distributing, copying, or reselling the software to other users. A personal EULA may also provide limited or no vendor support, maintenance, updates, or warranty, and it may have a fixed or renewable term. A personal EULA may not meet the needs of a large organization that needs proprietary software with vendor support for a multiuser environment7 .
Reference:
1: What is a Corporate License Agreement? - Definition from Techopedia1 2: Corporate License Agreement - Template - Word & PDF2 3: What is a Perpetual License? - Definition from Techopedia3 4: Perpetual vs. Subscription Software Licensing: Which Is Best for You?4 5: What is an Open Source License? - Definition from Techopedia5 6: Open Source Licenses: Which One Should You Use?6 7: What is a Personal License Agreement? - Definition from Techopedia7 : Personal License Agreement - Template - Word & PDF
質問 # 234
A technician was assigned a help desk ticket and resolved the issue. Which of the following should the technician update to assist other technicians in resolving similar issues?
- A. Knowledge base
- B. Acceptable use policy document
- C. Progress notes
- D. End user training
正解:A
解説:
Explanation
A knowledge base is a centralized repository of information that can be used by technicians to find solutions to common problems, best practices, troubleshooting guides, and other useful resources12. Updating the knowledge base with the details of the issue and the resolution can help other technicians who encounter similar issues in the future. It can also reduce the number of tickets and improve customer satisfaction3.
References1: The Official CompTIA A+ Core 2 Student Guide (Exam 220-1102), page 10-11 2: CompTIA A+ Certification Exam Core 2 Objectives, page 13 3: CompTIA A+ Core 2 (220-1102) Certification Study Guide, page 10-12
質問 # 235
Which of the following combinations meets the requirements for mobile device multifactor authentication?
- A. Password and PIN
- B. Password and swipe
- C. Fingerprint and password
- D. Swipe and PIN
正解:C
解説:
Mobile device multifactor authentication (MFA) is a method of verifying a user's identity by requiring two or more factors, such as something the user knows (e.g., password, PIN, security question), something the user has (e.g., smartphone, OTP app, security key), or something the user is (e.g., fingerprint, face, iris)12. The combination of fingerprint and password meets the requirements for mobile device MFA because it uses two different factors: something the user is (fingerprint) and something the user knows (password). The other combinations do not meet the requirements because they use only one factor: something the user knows (password or PIN) or something the user does (swipe).
References1: Set up the Microsoft Authenticator app as your verification method2: What is Multi-Factor Authentication (MFA)? | OneLogin
質問 # 236
A user's corporate iPhone had issues and was repaired while the user was on vacation. The mobile phone has compared to an identical phone. Which of the following best describes what is happening to the phone?
- A. Connectivity issues
- B. Jailbreak
- C. APK Source
- D. Developer Mode
正解:B
解説:
Detailed
A jailbroken iPhone (Option D) allows users to bypass Apple's restrictions to install unauthorized apps and modify system settings. This situation suggests the phone may have been compromised or tampered with, potentially voiding warranties and exposing the device to security vulnerabilities.
APK Source (Option A) refers to Android packages, not applicable to iPhones.
Connectivity issues (Option B) doesn't explain the comparison to an identical phone.
Developer Mode (Option C) is typically used for app development, not indicative of the situation.
CompTIA A+ Core 2 Reference:
2.7 - Explain mobile device security, including risks of jailbreaking
質問 # 237
Which of the following is the weakest wireless security protocol?
- A. WEP
- B. WPA2
- C. AES
- D. TKIP
正解:A
解説:
WEP (Wired Equivalent Privacy) is known to be the weakest wireless security protocol due to its vulnerabilities and ease of being compromised.
* WEP: The oldest and weakest protocol, susceptible to various attacks and easily cracked.
* WPA2: Much stronger security with AES encryption, currently one of the most secure standards.
* TKIP: Used with WPA, stronger than WEP but weaker than WPA2 with AES.
* AES: Advanced Encryption Standard, used in WPA2 and known for strong security.
Reference: CompTIA A+ Exam Objectives [220-1102] - 2.2: Compare and contrast wireless security protocols and authentication methods.
質問 # 238
A user is unable to access the company's internal network on a separate subnet. A help desk technician verifies the user's credentials, and the user has the appropriate permissions to access the network. The technician checks the network and finds the connection is stable. No other users are having this issue. Which of the following should the technician do next?
- A. Run a virus scan on the user's workstation.
- B. Consult with the firewall team to see If the user's IP address Is blocked.
- C. Delete the user's credentials and create new ones.
- D. Update the network drivers on the user's workstation.
正解:B
解説:
In this scenario, the user cannot access a separate subnet, and all other checks (credentials, network stability, and permissions) have been verified. The next logical step is to check if the user's IP address is being blocked by a firewall.
Option A: Consult with the firewall team to see if the user's IP address is blockedFirewalls can block specific IP addresses, preventing access to certain network segments. Given the problem's nature and the steps already taken, this is the most logical next step to ensure the user's IP is not inadvertently blocked.
Option B: Delete the user's credentials and create new onesThis step is unnecessary since the credentials have already been verified as correct.
Option C: Run a virus scan on the user's workstationWhile important for overall security, a virus scan is unlikely to resolve an issue specific to accessing a subnet if the problem does not affect other users.
Option D: Update the network drivers on the user's workstationIf the network connection is stable and the issue is isolated to accessing a specific subnet, network drivers are unlikely to be the cause.
Reference:
CompTIA A+ 220-1102 Objective 2.0 (Security), particularly firewall settings.
質問 # 239
When trying to access a secure internal network, the user receives an error messaging stating, "There is a problem with this website's security certificate." The user reboots the desktop and tries to access the website again, but the issue persists. Which of the following should the user do to prevent this error from reoccurring?
- A. Reimage the system and install SSL.
- B. Continue to access the website.
- C. Select View Certificates and then Install Certificate.
- D. Install Trusted Root Certificate.
正解:C
解説:
The error message indicates that the website's security certificate is not trusted by the user's device, which may prevent the user from accessing the secure internal network. To resolve this issue, the user can view the certificate details and install it on the device, which will add it to the trusted root certificate store. Reimaging the system and installing SSL, installing Trusted Root Certificate, or continuing to access the website are not recommended solutions, as they may compromise the security of the device or the network.
質問 # 240
......
更新された検証済みの合格させる220-1102リアル試験問題と解答:https://www.passtest.jp/CompTIA/220-1102-shiken.html
問題集返金保証付きの220-1102問題集公式問題集:https://drive.google.com/open?id=1InPahwbfFuV_adbnEny1mJLhi6cH7IkZ