220-1202 — CompTIA A+ Core 2 Exam Blueprint

Last revised: June 18, 2026

Practical exam blueprint for CompTIA A+ Core 2 (220-1202) readiness: operating systems, security, troubleshooting, and operational procedures.

How to Use This Exam Blueprint

Use this checklist as a practical study map for CompTIA A+ Core 2 (220-1202). It is designed to help you decide whether you can apply the topics, not just recognize terms.

Work through each section in three passes:

  1. Identify weak areas: Mark anything you cannot explain or perform without notes.
  2. Practice scenario decisions: For each tool, setting, or procedure, ask, “When would I use this instead of another option?”
  3. Final review: Revisit traps, troubleshooting flows, and command-line tasks before exam day.

This page is independent exam-prep support and should be used alongside the current CompTIA exam objectives for 220-1202.

Topic-Area Readiness Map

Readiness areaWhat to be ready forYou are ready when you can…
Operating systemsWindows, macOS, Linux, mobile OS concepts, file systems, interfaces, settings, utilitiesChoose the right OS tool or setting for a user, support, security, or troubleshooting task
OS installation and configurationInstall types, upgrades, drivers, updates, recovery options, user profiles, disk/file settingsExplain the safest path to configure or repair a system without unnecessary data loss
Command-line and admin toolsWindows commands, Linux/macOS commands, MMC snap-ins, Control Panel/Settings, Task Manager, Event ViewerMatch a command or tool to a symptom, then interpret the likely result
SecurityMalware, authentication, authorization, encryption, firewalls, wireless security, physical controls, privacyApply least privilege, secure a device, recognize threats, and follow a safe malware response
Software troubleshootingBoot issues, application crashes, services, updates, browser problems, performance, malware symptomsUse a structured process to isolate root cause and avoid making the problem worse
Operational proceduresDocumentation, change management, safety, professionalism, licensing, incident handling, backupsFollow a support process that is safe, documented, ethical, and customer-focused
Final exam judgmentMixed scenarios with multiple plausible answersPick the best next step based on impact, risk, data protection, and scope

Operating System Fundamentals Checklist

Core Platform Concepts

Be able to compare common operating system roles and support tasks.

TopicReview checklistReady-level prompt
Windows client OSSettings, Control Panel, services, registry, drivers, user profiles, updates, recoveryCan you find the correct administrative path when a user reports a slow, failing, or misconfigured PC?
macOSSystem Settings, Finder, Time Machine, Keychain, Terminal basics, force quit, updatesCan you identify where to manage security, backups, applications, and user preferences?
LinuxShell commands, package concepts, permissions, logs, services, networking toolsCan you perform basic navigation, permission review, and process checks from the terminal?
Mobile OSApp permissions, updates, screen locks, biometrics, device encryption, backup/sync, remote wipe conceptsCan you secure or troubleshoot a user device without exposing personal data?
File systemsNTFS, exFAT, FAT32, ext-family concepts, APFS conceptsCan you choose a file system based on compatibility, permissions, and device use?
User dataProfiles, home folders, app data, roaming/local concepts, backupsCan you protect user data before repair, migration, or reinstallation?

Windows Interfaces and Configuration Areas

Tool or locationWhat it is used forExam-style cue
Settings appModern configuration for accounts, updates, privacy, network, apps, accessibilityUser needs a common configuration change
Control PanelLegacy and detailed settings still used for many administrative tasksScenario names an older applet or classic setting
Device ManagerDriver status, disabled devices, hardware conflictsDevice not recognized, warning icon, rollback driver
Disk ManagementPartitions, volumes, drive letters, formattingNew disk not visible in File Explorer
Task ManagerProcesses, startup apps, performance, services viewApplication frozen or system resource spike
Services consoleStart, stop, disable, or set service startup behaviorFeature fails because required service is stopped
Event ViewerSystem, application, security logsNeed evidence of errors, warnings, crashes, login events
Registry EditorLow-level Windows configurationUse carefully; backup/export before change
Local Users and GroupsLocal account and group managementAdd user to local admin or reset local permissions
Local Security PolicyPassword policy, audit policy, user rightsConfigure local security behavior
Windows Defender FirewallInbound/outbound rules, profilesApp blocked or exposed on wrong network profile
Windows SecurityAntivirus, reputation protection, device security, firewall statusCheck protection status after suspected malware
System ConfigurationBoot and startup troubleshootingDiagnose startup service or boot option issue
Computer ManagementAggregated admin consoleNeed one place for users, disks, services, logs
Remote Desktop settingsRemote access configurationSupport or access a machine remotely, if authorized

OS Installation, Upgrade, and Recovery Readiness

Installation and Upgrade Decisions

Decision pointChoose carefully because…Check yourself
Clean install vs upgradeClean installs reduce legacy issues but can remove apps/data if not backed upCan you explain what must be backed up first?
In-place repair vs reinstallRepair may preserve data and apps; reinstall may be more disruptiveCan you choose the least destructive option that fixes the issue?
Local account vs organizational accountAffects authentication, policy, management, and recoveryCan you explain the support implications?
32-bit vs 64-bit conceptsImpacts application and hardware compatibilityCan you recognize compatibility constraints without memorizing unsupported details?
Driver sourceVendor driver may be needed for hardware-specific featuresCan you avoid installing untrusted drivers?
Update timingUpdates can fix security issues but may require restart or testingCan you apply change control before a production change?

Recovery and Repair Tools

Tool or featureUse when…Know the risk
System RestoreRecent configuration or driver change caused instabilityDoes not replace a full data backup
Startup RepairWindows fails to boot properlyMay not fix hardware or severe file-system problems
Safe ModeNeed minimal drivers/services to isolate a problemSome devices and network features may be unavailable
Recovery environmentNeed repair options outside normal bootChoose options carefully to avoid data loss
Reset/reinstall optionsSystem corruption or persistent software issuesVerify backup and user approval first
Backup restoreUser data or system state must be recoveredConfirm restore point, version, and destination
Driver rollbackNew driver caused instabilityWorks only when a prior driver is available
Uninstall updateRecent update correlates with failureConsider security and organizational policy impact

Installation and Configuration Checklist

  • I can identify the information to collect before an OS install: user data, apps, license status, drivers, network settings, and special hardware needs.
  • I can explain why backups and restore verification matter before destructive changes.
  • I can distinguish upgrade, clean install, repair, reset, and restore scenarios.
  • I can configure basic user accounts, local groups, passwords, and sign-in options.
  • I can recognize when a driver issue is more likely than an application issue.
  • I can troubleshoot missing storage, incorrect drive letters, and partition/formatting problems.
  • I can explain why system time, region, language, and accessibility settings may matter in support cases.
  • I can choose a recovery option based on severity, data risk, and time available.

Command-Line and Utility Readiness

You do not need to memorize every switch for every command, but you should know what the command is for and when it is the best next step.

Windows Command Checklist

Command or utilityMain purposeScenario cue
ipconfigView or refresh IP configurationNo network, wrong address, DHCP troubleshooting
pingTest reachability and basic latencyCan the host reach gateway, DNS, or remote endpoint?
tracertShow path to destinationConnectivity fails beyond local network
nslookupQuery DNS resolutionWebsite fails by name but works by IP
netstatView connections and listening portsSuspicious connections or service listening check
net useMap or disconnect network sharesUser cannot access shared drive
net userManage or view local usersLocal account support task
sfcCheck and repair protected system filesCorrupted Windows components suspected
DISMService and repair Windows imageSFC cannot complete or image health issue suspected
chkdskCheck file system and disk errorsDisk errors, file corruption, abnormal shutdown
shutdownRestart or shut down locally/remotely when authorizedControlled reboot required
gpupdateRefresh Group PolicyPolicy change not reflected yet
gpresultReview applied policyDetermine whether policy applied to user/computer
tasklistShow running processesNeed process name or PID
taskkillEnd a processApplication stuck and GUI cannot close it
formatFormat a volumePrepare storage; destructive if wrong target
diskpartAdvanced disk partition tasksDisk configuration requires command line
robocopyRobust file copyMigrations, backups, large directory copy
winverShow Windows version/build informationCompatibility or support verification

Example command-recognition practice:

ipconfig /all        -> Review detailed adapter configuration
ipconfig /release    -> Release DHCP lease
ipconfig /renew      -> Request new DHCP lease
ipconfig /flushdns   -> Clear local DNS resolver cache

Linux and macOS Command Checklist

CommandMain purposeScenario cue
lsList files/directoriesNeed to inspect directory contents
cdChange directoryNavigate file system
pwdPrint working directoryConfirm current location
cpCopy filesDuplicate file or directory
mvMove or renameRename file or relocate it
rmRemove filesDelete with caution
chmodChange permissionsScript not executable or permissions too open
chownChange owner/groupFile ownership prevents access
sudoRun command with elevated privilegesAdministrative command required
psView processesIdentify running process
killTerminate processStop hung or unwanted process
topMonitor processes/resourcesCPU or memory usage investigation
dfDisk free spaceCheck mounted volume capacity
duDirectory/file space usageFind space-consuming folders
grepSearch textFind matching lines in logs/config
findLocate filesSearch by name or attributes
ifconfig / ipNetwork interface infoInterface addressing check
pingConnectivity testReachability check
traceroutePath testRouting/path troubleshooting
manCommand documentationNeed syntax or options

Permissions Readiness

Be ready to interpret permissions conceptually.

Permission conceptWhat to know
ReadView file contents or list directory contents, depending on context
WriteModify file contents or create/delete items, depending on context
ExecuteRun a file or traverse a directory, depending on OS/context
OwnershipDetermines who controls access and permission changes
InheritanceChild objects may receive permissions from parent folders
Share vs file permissionsEffective access may be constrained by both network share and file system permissions
Least privilegeUsers should receive only the permissions needed for their role

Security Exam Blueprint

Core Security Concepts

ConceptYou should be able to…
ConfidentialityProtect data from unauthorized disclosure
IntegrityPrevent or detect unauthorized data modification
AvailabilityKeep systems and data accessible to authorized users
AuthenticationVerify identity using passwords, MFA, biometrics, certificates, or tokens
AuthorizationGrant access based on role, group, permission, or policy
Accounting/auditingTrack actions through logs and records
Least privilegeRestrict access to only what is required
Defense in depthLayer controls so one failure does not expose everything
Zero trust conceptsVerify explicitly and avoid implicit trust based only on network location
Physical securityProtect devices, ports, rooms, screens, and removable media

Threat and Attack Recognition

Threat or symptomWhat it may indicateReady response
Phishing emailCredential theft or malware deliveryInspect sender, links, attachments; report through process
Spear phishingTargeted social engineeringVerify request through trusted channel
Vishing/smishingPhone or SMS-based social engineeringDo not disclose credentials or codes
Shoulder surfingVisual credential/data theftUse privacy screens, awareness, secure workspace
TailgatingUnauthorized physical entryFollow visitor and badge procedures
Malware pop-upsAdware, rogue security software, browser hijackIsolate, scan, remove, repair browser settings
Unexpected encryptionRansomware or destructive malwareDisconnect from network and escalate
Slow system with unknown processesMalware, resource abuse, or broken softwareInvestigate processes, startup items, logs
Browser redirectsExtension, proxy, DNS, or malware issueCheck extensions, proxy settings, DNS, scan
Repeated account lockoutsPassword attacks, saved bad credential, or user errorReview logs and credential sources
Unauthorized softwareShadow IT or malware riskValidate business need and policy compliance

Security Controls and Configuration

AreaChecklist
PasswordsKnow length, complexity, reuse risk, lockout concepts, password managers, and reset procedures
MFAKnow why MFA reduces password-only risk and what recovery issues it introduces
BiometricsKnow convenience vs fallback authentication considerations
Account typesDistinguish standard user, administrator, guest, service, and shared account risks
Groups and rolesUse groups to assign permissions consistently
EncryptionUnderstand full-disk, file/folder, removable media, and data-in-transit concepts
FirewallKnow inbound vs outbound rules and public/private/domain profile concepts
Antivirus/anti-malwareKnow scanning, quarantine, signatures/updates, real-time protection, and false positives
Wireless securityPrefer modern encryption and strong passphrases; avoid insecure legacy choices when possible
VPNKnow when encrypted remote access is appropriate
Mobile securityScreen lock, encryption, remote wipe, app permissions, trusted app sources
Browser securityPop-up control, extensions, cache/cookies, saved passwords, certificate warnings
Physical securityCable locks, badge access, cameras, privacy screens, secure disposal
Data disposalWipe, sanitize, shred, or destroy based on media type and policy

Malware Response Workflow

Use a consistent sequence. Exam scenarios often test the safest next step, not just the final fix.

    flowchart TD
	    A[Identify symptoms] --> B[Isolate affected system]
	    B --> C[Preserve data and evidence as required]
	    C --> D[Disable persistence points if appropriate]
	    D --> E[Update anti-malware tools]
	    E --> F[Scan and remove/quarantine]
	    F --> G[Remediate damaged settings]
	    G --> H[Update OS, apps, and signatures]
	    H --> I[Change affected credentials]
	    I --> J[Educate user and document]

Checklist:

  • I can identify when to disconnect a system from the network.
  • I can avoid deleting evidence when escalation or policy requires preservation.
  • I can distinguish quarantine, removal, rebuild, and restore.
  • I can check startup items, browser extensions, scheduled tasks, services, and unknown processes.
  • I can explain why passwords may need to be changed after cleanup.
  • I can document symptoms, actions taken, tools used, and user impact.

Software Troubleshooting Readiness

Troubleshooting Method Discipline

Know the general troubleshooting flow and apply it consistently.

StepWhat good exam behavior looks like
Identify the problemGather symptoms, user statements, recent changes, error messages, scope
Establish a theoryStart with likely causes; question the obvious without assuming
Test the theoryUse safe, targeted tests; if wrong, form a new theory
Plan and implement fixConsider user impact, backups, authorization, and change control
Verify functionalityConfirm the issue is fixed and no new issue was introduced
Document findingsRecord root cause, resolution, affected assets, and next steps

Symptom-to-Cause Practice

SymptomLikely areas to investigateBest next-step thinking
Application crashes at launchCorrupt app files, missing dependency, permission issue, update problemCheck Event Viewer/logs, repair/reinstall app, test as another user
System slow after startupStartup apps, malware, low disk space, insufficient memory, failing diskUse Task Manager/resource tools before reinstalling
Blue screen or kernel panicDriver, hardware, OS corruptionCheck recent driver/hardware changes and logs
Device works on one PC, not anotherDriver, port, permissions, OS compatibilityTest known-good port/cable/device; review Device Manager
No audio/videoDisabled device, wrong output, driver, app permissionCheck settings, drivers, app-level permissions
Browser pop-ups/redirectsExtension, cache, proxy, DNS, malwareDisable extensions, clear cache, scan, check proxy/DNS
Cannot printPrint queue, driver, network, permissions, serviceCheck printer status, queue, service, connectivity
Cannot access network shareCredentials, permissions, name resolution, offline serverTest path, permissions, DNS, network reachability
Login failsPassword, lockout, disabled account, network/domain issueVerify account status and scope before resetting
Missing filesWrong profile, sync issue, deletion, ransomware, permission changeCheck profile path, backups, recycle/trash, sync status
Update failsDisk space, service issue, corrupted cache, network, policyCheck free space, services, error code, logs
Certificate warningWrong date/time, invalid cert, captive portal, interceptionVerify time, URL, network, certificate details

Software Troubleshooting Checklist

  • I can separate user-profile issues from system-wide issues.
  • I can test whether a problem follows the user, device, network, or application.
  • I can use logs before guessing.
  • I can identify when a reboot is useful and when it is only hiding the problem.
  • I can explain the difference between repair, reinstall, reset, and rollback.
  • I can troubleshoot services that are stopped, disabled, or failing to start.
  • I can investigate startup items and scheduled tasks.
  • I can recognize symptoms that suggest malware rather than ordinary software failure.
  • I can protect user data before destructive troubleshooting.
  • I can document the verified fix.

Operational Procedures Checklist

Safety and Professional Practice

AreaWhat to knowExam cue
ESD protectionUse grounding, proper handling, anti-static bags, safe work surfacesHandling internal components
Electrical safetyPower down, unplug when appropriate, avoid unsafe equipmentWorking around power supplies or damaged cords
Environmental safetyDispose of batteries, toner, chemicals, and electronics properlyScenario mentions disposal or hazardous material
Personal safetyUse lifting technique, PPE, situational awarenessHeavy equipment or unsafe workspace
Fire safetyUse appropriate response and escalationSmoke, sparks, overheating, burning smell
Workspace cleanlinessKeep screws, tools, cables, and devices organizedAvoid damage and lost parts
Customer professionalismRespect time, property, privacy, and communication expectationsUser-facing support scenario

Documentation and Change Management

ProcedureBe ready to do this
Ticket documentationCapture symptoms, asset, user, time, impact, steps taken, resolution
Asset managementTrack device identity, assigned user, location, warranty/support status if applicable
Change requestDescribe reason, risk, rollback plan, affected users, timing, approval
Knowledge base articleCreate repeatable instructions from resolved issues
Inventory controlRecord hardware, software, and license-related information
Incident documentationPreserve facts, timeline, contacts, actions, and escalation
Backup documentationNote what is backed up, where it is stored, and how restore is verified
CommunicationSet expectations, provide status, avoid unsupported promises

Privacy, Licensing, and Ethics

  • I can identify personally identifiable information and sensitive business data.
  • I can avoid viewing or copying user data unnecessarily.
  • I can follow acceptable-use and data-handling policies.
  • I can explain why software licensing compliance matters.
  • I can distinguish authorized remote access from unauthorized monitoring.
  • I can escalate suspected illegal, unsafe, or policy-violating activity.
  • I can maintain chain-of-custody-style documentation when required by policy.
  • I can communicate clearly without blaming the user.

Scenario and Decision-Point Checks

Use these prompts to practice exam judgment.

ScenarioBest decision focusAvoid this trap
User reports a slow PC after installing a free utilityCheck startup apps, unknown processes, malware, browser extensionsImmediately replacing hardware
Laptop cannot join Wi-Fi after password changeForget/reconnect network, verify passphrase, profile, adapter statusReinstalling OS before basic network checks
User cannot open files after a ransomware messageIsolate device, escalate, protect evidence, avoid spreadingRunning random cleanup tools while connected
Application works for admin but not standard userPermissions, profile, app rights, install scopeMaking the user local admin as the first fix
New printer appears offlineCheck power/network/queue/driver/default printerReinstalling every printer driver immediately
User needs access to a shared folderVerify business need, group membership, NTFS/share permissionsGranting broad permissions directly to one user without approval
Browser shows certificate warnings on many sitesCheck date/time, network interception, proxy, certificate storeTelling user to ignore warnings
Device is being reassigned to another employeeBackup, wipe/reset, remove old account, document assetHanding over device with previous user data
Update caused boot failureUse recovery options, uninstall/rollback if appropriateClean installing before preserving data
Help desk receives urgent password request from executive by textVerify identity through approved channelResetting password based only on urgency

High-Value “Can You Do This?” Checklist

Operating Systems

  • Navigate Windows Settings and Control Panel to find network, account, update, privacy, and device settings.
  • Use Device Manager to identify driver problems and choose update, rollback, disable, or uninstall.
  • Use Event Viewer or logs to support a troubleshooting theory.
  • Explain the difference between local, domain/organizational, administrator, and standard user accounts.
  • Manage basic file and folder permissions.
  • Recognize when the issue is profile-specific versus system-wide.
  • Choose a safe recovery option for boot failure or OS corruption.
  • Perform basic macOS and Linux navigation and support tasks conceptually.

Security

  • Identify phishing, social engineering, malware, ransomware, and browser hijacking indicators.
  • Apply least privilege to users, groups, shares, and applications.
  • Choose appropriate authentication and MFA controls.
  • Secure a mobile device with lock, encryption, updates, and remote wipe concepts.
  • Configure or reason about firewall profiles and app access.
  • Explain when to quarantine, remove, rebuild, restore, or escalate.
  • Protect sensitive data during troubleshooting.
  • Recognize insecure user behavior and provide concise education.

Troubleshooting

  • Start with symptoms, scope, and recent changes.
  • Test one theory at a time.
  • Choose the least disruptive fix that is likely to work.
  • Verify functionality after the fix.
  • Document root cause and resolution.
  • Know when to escalate instead of continuing alone.
  • Avoid destructive changes until backups and approvals are handled.
  • Use commands and logs to confirm, not guess.

Operational Procedures

  • Follow ESD and electrical safety practices.
  • Document tickets clearly enough that another technician can continue the work.
  • Communicate downtime, risk, and next steps to users.
  • Follow change management for production-impacting work.
  • Handle licensed software and sensitive data properly.
  • Dispose of batteries, toner, storage media, and electronics appropriately.
  • Maintain professionalism under pressure.
  • Respect privacy and authorization boundaries.

Common Weak Areas and Exam Traps

Weak areaWhy candidates miss itHow to prepare
Tool selectionSeveral tools seem plausiblePractice matching symptom to first diagnostic tool
PermissionsShare, NTFS, group, and inherited permissions interactWork through effective-access scenarios
User vs system scopeCandidates reinstall apps or OS too quicklyTest another user profile or device when appropriate
Malware response orderCandidates jump straight to removalRemember isolation, evidence/policy, cleanup, update, education
Command purposeCommands are memorized without contextStudy commands by troubleshooting scenario
LogsCandidates ignore Event Viewer and system logsPractice using logs as evidence
Destructive repairFast fix may cause data lossAlways consider backup, approval, and rollback
Account privilegeMaking everyone admin “fixes” the symptom but creates riskUse least privilege and proper permissions
Browser problemsCache, extensions, proxy, DNS, and malware can look similarBuild a repeatable browser troubleshooting checklist
ProfessionalismTechnical answer ignores customer impactInclude communication, documentation, and authorization

Final-Week Review Plan

Seven to Four Days Out

  • Re-read the current CompTIA objectives for CompTIA A+ Core 2 (220-1202) and mark each item green, yellow, or red.
  • Build a one-page command table from memory, then check gaps.
  • Practice mixed troubleshooting scenarios, not only definition questions.
  • Review Windows administrative tools and what each one is best used for.
  • Review malware removal order and incident escalation cues.
  • Review permissions, local users/groups, and least privilege.
  • Review safety, documentation, and change-management steps.

Three to Two Days Out

  • Drill weak topics only; do not reread everything passively.
  • Explain five scenarios out loud: malware infection, failed update, app crash, permission denial, and browser redirect.
  • Practice choosing the “best next step” rather than the most advanced fix.
  • Review mobile security and backup/sync concepts.
  • Review macOS/Linux basic commands and support areas.
  • Review privacy and data-handling expectations.

Day Before

  • Stop deep new-topic study.
  • Review your personal trap list.
  • Review command purposes and administrative tools.
  • Review the troubleshooting process and malware workflow.
  • Prepare exam logistics, identification, timing, and testing environment requirements.
  • Get rest.

Practical Next Step

Pick your lowest-confidence readiness area from this checklist and do focused practice on that topic. For each missed question or lab task, write down:

  • the symptom,
  • the correct tool or concept,
  • why the tempting answer was wrong,
  • the safest next step,
  • and what you will recognize next time.

That habit turns the 220-1202 topic list into exam-ready judgment for CompTIA A+ Core 2 (220-1202).

Study Plan
Scenario Guide
Browse Certification Practice Tests by Exam Family