220-1202 Operational Procedures Study Guide for the CompTIA A+ Core Series Exam

Scripting

Scripting can be used to automate IT management processes. It is important to be familiar with all of these concepts.

Script File Types

There are numerous scripting languages in use, each with its own syntax and nuances. You should be familiar with the following most common script languages and be able to recognize their file types:

.bat—A batch file is a series of commands to be run by the Windows operating system stored in a plain text file.

.ps1—A .ps1 file is a plain text file used to run scripts in PowerShell.

.vbs—A .vbs file (VBScript) contains lines of codes in the Visual Basic programming language that are encoded in plain text format.

.sh—A .sh file is like the batch files of Windows, but it can be executed in Linux or Unix.

.js—A .js file is a script written in JavaScript.

.py—A .py script is a script written in the Python programming language.

Uses of Scripting

Scripting use cases are scenarios that you are likely to encounter as an IT technician. You should be familiar with the most common use cases.

Basic Automation

Automation uses a set script to perform a specific task that needs to remain constant each time the script is run. Basic automation may be used for creating users or adding users to a group.

Restarting Machines

Scripting is useful for restarting machines when multiple machines need to be restarted. By creating a script, you automate the process rather than having to command each machine individually.

Remapping Network Drives

Mapping a drive is the process of mounting a remote file system to a drive letter. Creating a script for the process ensures a reproducible result each time.

Installation of Applications

Scripting can be used for the installation of applications to ease the process. For example, a script may be written that requires the successful installation of all prerequisites before the application is installed, rather than having to manually install each prerequisite.

Automated Backups

Scripts may also be used to automate the backup process to increase reliability. For example, a script may be used to automate the backup of a Structured Query Language (SQL) database.

Gathering of Information/Data

When dealing with information and data gathering about a network, device, or batch of devices, scripting can be more efficient than using a graphical user interface (GUI). With a scripting command, you are able to view the exact data you need without having to maneuver through a GUI.

Initiating Updates

Installing updates is a common automated process offered on operating systems such as the Windows OS. However, this process may not update and install a patch as quickly as it may be needed. To immediately initiate an update, a script may be used.

Other Script Considerations

While using scripts can be highly effective, there are also many considerations to be aware of that may affect your device or your entire system.

Malware

Be aware of the potential for introducing malware into a system via a script. Sometimes you may need additional scripts to aid in the functionality of a script. Scripts can be imported using a third-party tool. Third-party tools, however, are commonly environments where malware resides. As such, Malware may be attached to the script and inserted unintentionally.

System Settings

Scripts, such as those for basic automation, are commonly used to make changes to a system. However, if not properly executed, the script may make unintentional changes to other system settings. If possible, try new scripts in a test environment before implementing them.

Browser or System Crashes

Scripting can be a powerful tool in helping to automate processes. However, if not properly constructed, a script can inadvertently consume resources, such as RAM, leading to system crashes.

Remote Access Technologies

Accessing devices remotely is a major part of troubleshooting issues. Questions in this section will be scenario based, and you will need to be able to identify and use these common methods and tools.

Methods/Tools

Methods and tools for remote connection vary and may be dependent upon the operating system.

Remote Desktop Protocol (RDP)

RDP is a Microsoft proprietary technology for remotely accessing Windows computers. RDP provides a user with a graphical interface to connect to another computer over a network connection. RDP uses Transmission Control Protocol (TCP) port 3389.

Virtual Private Network (VPN)

A VPN can be used for secure remote access by creating an encrypted tunnel through which the data is transmitted and accessed. Common VPN configurations include site-to-site (a permanent secure connection between two networks), client-to-site (software installed on clients to connect to a primary network), or clientless (a connection through a web browser).

Virtual Network Computer (VNC)

VNC is an open-source protocol similar to RDP that provides a tool for sharing desktops. VNC operates on a client-server model and usually only allows the use of one console on an OS at a time.

Secure Shell (SSH)

SSH creates a two-way communication connection between computers over a network connection. SSH is a terminal-based program with no graphical interface. SSH operates on port 22.

Remote Monitoring and Management (RMM)

RMM provides a way for a company to monitor and manage multiple devices over a wide range of locations through a single interface. There are numerous RMM software packages available on the market. RMM software requires the placement of an agent on each connected device that reports back to the primary agent or the managed service provider (MSP).

Simple Protocol for Independent Computing Environments (SPICE)

SPICE is an open-source remote connection protocol that allows a user to access, display, and manage a virtual machine (VM) from a remote location. SPICE uses a client-server model for access.

Windows Remote Management (WinRM)

WinRM is a Windows proprietary remote access management protocol that allows an administrator to access, complete commands and tasks, monitor usage and health, and launch remote administrative tasks across connected Windows devices.

Microsoft Remote Assistance (MSRA)

MSRA is a Windows remote access tool that allows a Windows user to request assistance from another Windows user. MSRA gives the assisting user the ability to remotely connect to and control the requesting device, allowing for remote troubleshooting and remediation.

Third-Party Tools

There are many third-party tools that provide a quick, reliable, and efficient way to connect to computers.

One common feature that most third-party remote access tools include is screen sharing. A screen-sharing feature allows a technician to view the client’s screen and see exactly what they are seeing. Popular examples are Splashtop and TeamViewer.

Video Conferencing Software

Video conferencing software is similar to screen-sharing software but offers added functionality, such as allowing multiple users to join in at once as well as calendar invitations and attendee management. Popular examples include Microsoft Teams and Zoom.

File Transfer Software

File transfer software is a type of software dedicated solely to sharing files. Popular examples include Dropbox and OneDrive.

Desktop Management Software

Desktop management software is an extension of screen-sharing software, which, when integrated with other management software such as Intun, allows for completely remote device management. To be considered desktop management software, the extension must be configured to await an incoming connection.

Security Considerations

When considering which remote access option to use, it’s vital to consider the security ramifications. Take into consideration the type of data being transmitted, the encryption level of the method, and the transmission method. Keep in mind that any remote connection accessed via an internet connection may be vulnerable to attack. These are some of the vulnerabilities of methods we’ve discussed:

RDP—RDP may be vulnerable through the use of weak credentials as well as the known usage of port 3389, which can be targeted for an on-path attack.
VPN—A VPN may be vulnerable through weak encryption, leaks, and malware infection transmission.
VNC—The most glaring security concern of a VNC is that it is open source and is not natively encrypted. Encryption may be added via a plug-in.
SSH—The main security concerns with SSH is the ability of SSH to port forward as well as the convenience of users sharing keys.
RMM—RMM’s security issues include embedded malware, vulnerability to brute-force attacks, and the human component (e.g., credential sharing or targeted social engineering attacks).
MSRA—MSRA is only accessible via the run dialog box and is not automatically configured to connect via an internet connection. Firewalls and routers disrupt the functionality of MSRA unless configured properly.
third-party tools—Be wary when using third-party tools. Each type of tool may be vulnerable to any number of threats, such as weak credentials, brute-force attacks, on-path attacks, embedded malware, weak or no encryption, etc.

Artificial Intelligence (AI)

AI is the ability of a computer system to perform tasks commonly performed by intelligent human counterparts autonomously. For the CompTIA A+ exam, you should be able to explain basic concepts related to AI.

Application Integration

Integration of AI technologies into applications is becoming increasingly commonplace, with AI being integrated into not only common and redundant tasks but also into cybersecurity, data management, business processes, and system maintenance.

Policy

With the increase of AI in the IT infrastructure and operating environment, it is vital to have established policies directly related to AI. AI policies should address disclosure, usage, accountability, safety, and transparency, and they may vary between organizations.

Appropriate Use

An appropriate use policy for AI is commonly contained within the broader acceptable use policy and pertains specifically to AI usage. Appropriate use policies commonly include aspects such as data privacy, compliance with laws and regulations, ethical usage, and security.

Plagiarism

Plagiarism is the copying or usage of another’s words or ideas represented as one’s own. AI plagiarism policies refer to the specific guidelines pertaining to the usage of AI-generated words or concepts and how that information should be cited or used at all. AI plagiarism policies are highly varied from organization to organization, with federal regulations lagging behind the emerging technology.

Limitations

While AI is a quickly growing field within the IT environment, it is not without limitations. Be aware that AI is not actual intelligence but merely a conglomeration of data points.

Bias

AI bias refers to the misrepresentation of fact as truth by artificial intelligence. AI bias may originate from multiple points along the AI pipeline, including misrepresented or incomplete data, flawed data algorithms, flawed design that favors a particular outcome, and choices made by the designers of the program itself.

Hallucinations

An AI hallucination occurs when an AI program presents nonsensical or false data or information as truth. AI hallucinations can range from minor facts to completely false narratives and is commonly seen in chatbots and image generation.

Accuracy

AI accuracy is a technical measure of how often an AI model’s outcome or predictions correlate with factual truth. AI accuracy is never 100% and should always be checked by human intelligence since AI is only as accurate as the data it is pulling from.

Private vs. Public

AI technologies are used within both the public and private sectors based on access, control, and usage. How data is used and secured varies depending on whether it is in the public or private sector.

Data Security

Data security in the private sector is accomplished by keeping AI data within the internal infrastructure of the organization, protecting it from external access. Security for AI data in the public sector is much more difficult to control due to its open nature.

Data Source

AI data sources within the private sector are highly controlled and monitored, only allowing specific data to be used by private AI programming. AI data sources in the public sector are much more volatile and susceptible to bias, either intentional or unintentional.

Data Privacy

Similar to data security, AI data privacy within the private sector is contained within the internal infrastructure, with increased access control securing data privacy. In the public sector, AI data privacy is much more fragile due to the open nature of the environment.