CompTIA 220-1202 - CompTIA A+ Core 2 (2026 Exam Update)

The correct answer is C. SSH (Secure Shell), because SSH is the standard method for secure, command-line-based remote management of network devices, including switches, routers, and firewalls. Network switches typically do not provide graphical interfaces, and administrators interact with them using a command-line interface (CLI).

According to the Quentin Docter – CompTIA A+ Complete Study Guide, SSH is widely used to securely access and manage network infrastructure devices. It encrypts all communication between the technician’s system and the remote device, protecting credentials and command output from interception.

The Travis Everett & Andrew Hutz – CompTIA A+ All-in-One Exam Guide explains that SSH allows administrators to execute commands remotely and capture text-based output, which can easily be copied and shared for documentation or escalation. This makes it ideal for fulfilling requests that involve running commands and returning results.

The Mike Meyers / Mark Soper Lab Manual clarifies that RDP and VNC are graphical desktop-sharing tools typically used for managing workstations or servers, not network switches. WinRM is used for Windows system management, not network hardware.

Because the task involves secure CLI access to a network switch, SSH is the correct and expected tool, making C the correct answer.

Standard Operating Procedures (SOPs)guide technicians through consistent and complete processes, including documentation.

FromTravis Everett – All-in-One Exam Guide:

“SOPs ensure that all required steps—such as data collection and issue description—are followed in every support interaction.”

Virtualizationallows the legacy OS to be run in a virtual machine (VM) on top of the newer OS. This method provides backward compatibility without requiring outdated operating systems on physical hardware.

FromQuentin Docter – CompTIA A+ Complete Study Guide:

“Using virtualization is a preferred method when legacy applications are needed after migrating to newer operating systems. It allows legacy environments to exist securely within a modern OS framework.”

Linux is an open-source operating system that is freely available and does not require traditional licensing fees. It is highly versatile and scalable, making it suitable for both workstations and servers. Many enterprise environments use Linux to reduce software costs and benefit from robust server features.

B. Windows requires per-device or per-user licensing for both workstation and server editions.

C. macOS is proprietary and limited to Apple hardware with licensing restrictions.

D. Chrome OS is designed for lightweight devices and lacks server functionality.

MDM hardening often includes enforcing stronger authentication on mobile devices. The phrase “unique to each user” points to something inherent to the individual—biometrics—rather than something the user knows (password/pattern) or something they have (PIV/smart card). Quentin Docter explains: “Biometric devices use physical characteristics to identify the user. This type of authentication is considered something that you are,” and lists common implementations including “fingerprint… scanners.” This exactly matches a fingerprint, which is unique per person and commonly enforced via device policies in MDM environments.

Docter also notes mobile devices increasingly implement biometrics for access control, specifically citing “fingerprint access control” adopted by manufacturers. A drawn pattern and a password are knowledge factors and can be shared/observed, while a PIV card is a possession factor (something you have) and can be lost or loaned. Because the question specifies a hardening technique “unique to each user,” the best match is the biometric factor: fingerprint (B).

3G networks generally do not provide the bandwidth required for seamless HD video streaming. With only two signal bars and a 3G connection, the mobile device likely cannot maintain the necessary data throughput, resulting in timeouts or buffering failures. This is a classic symptom of insufficient network speed or signal strength.

A. Lack of Wi-Fi may contribute, but the root cause is the low mobile bandwidth, not the Wi-Fi state.

B. A website subscription lapse would return an account error, not a timeout.

D. Full device storage can affect downloads but not streaming from the internet.

When a technician exhausts all troubleshooting steps within their knowledge and the issue remains unresolved, the best practice is to escalate the issue to a higher-level technician or team. Additionally, the technician should clearly communicate the next steps to the customer to maintain transparency and reduce frustration. This ensures continuity of support and upholds customer satisfaction.

B. Dismissing the customer is unprofessional and violates proper customer service protocols.

C. Interrupting the customer and providing excuses escalates the tension and is inappropriate.

D. Continuing to ask questions without new troubleshooting steps wastes time and increases frustration.

The correct answer is D. Smishing, which is a form of phishing attack conducted via SMS text messages. The key indicators in this scenario are the unexpected text message and the embedded link prompting the user to reset a password. These attacks rely on urgency and fear to trick users into clicking malicious links or providing credentials.

According to the Quentin Docter – CompTIA A+ Complete Study Guide, smishing attacks often impersonate legitimate organizations such as banks, IT departments, or service providers. The attacker claims that an account action is required, such as resetting an expired password, to prompt immediate user response.

The Travis Everett & Andrew Hutz – All-in-One Exam Guide explains that smishing is distinct from other phishing variants based on delivery method. Vishing uses voice calls, spear phishing targets specific individuals via email, and whaling targets high-level executives. Since this attack is delivered via text message, it is classified as smishing.

The Mike Meyers / Mark Soper Lab Manual reinforces that modern attackers increasingly use SMS because users often trust text messages more than emails. This makes smishing a highly effective and common attack vector.

Because the attack uses SMS with a malicious link, smishing is the correct answer.

This scenario is phishing delivered through a QR code (scan an image to reach a portal), which is best described as quishing . Quentin Docter defines phishing as a social engineering method where the attacker makes a message look legitimate and convinces the user to click a link to “correct” an account problem; after the click, the victim is taken to a site controlled by the attacker and asked for credentials. A QR code in a message is simply an alternate way to deliver that same malicious “link” without showing the URL clearly.

The Mike Meyers Lab Manual distinguishes related social engineering types: vishing is done by phone calls, and whaling targets high-level executives. Smishing is phishing delivered via SMS text messages, but the prompt specifically centers on scanning an image (QR-style workflow), not a text-message attack vector.

Docter also notes QR codes are commonly used in authentication workflows (for example, adding accounts to authenticator apps), which is why attackers mimic this behavior to make the scam seem normal. Therefore, QR-based phishing is best labeled quishing .

Microsoft Edge most commonly blocks “unrecognized” or “potentially unsafe” downloads through Microsoft Defender SmartScreen, which is a reputation-based protection feature integrated into Windows/Edge. When SmartScreen cannot establish trust in a downloaded file (often because the file type is commonly abused or the file has low reputation), it can warn or block the download even if the technician believes the file is legitimate. In this scenario, the technician should adjust SmartScreen settings (rather than disabling antivirus, UAC, or the firewall) to permit the download while keeping other protections intact. This aligns with Windows security management concepts: Windows includes built-in protections (Microsoft Defender and related safeguards) that can be configured through Windows Security, and technicians should tune the specific protection causing the block instead of broadly weakening system security. Also, browser security options are managed from the browser’s Settings area, reinforcing that the correct fix is changing the browser’s download/reputation protection behavior rather than network or privilege controls.