Fiber-optic technology transmits data as pulses of light through thin strands of glass or plastic, allowing for the highest possible bandwidth and fastest speeds, often reaching multiple gigabits per second (Gbps). It is also characterized by very low latency and is less susceptible to electromagnetic interference compared to copper-based alternatives like DSL and Coaxial cable. For a company requiring the "fastest network speeds possible," fiber is the superior choice among the options provided, as its performance capabilities far exceed those of DSL, Coaxial, and Satellite technologies.

B. DSL: Digital Subscriber Line (DSL) uses existing copper telephone lines, which have limited bandwidth and are susceptible to signal degradation over distance, resulting in significantly slower speeds than fiber.

C. Satellite: This technology has inherently high latency due to the vast distance signals must travel to and from an orbiting satellite, and its speeds are generally lower and less reliable than terrestrial options.

D. Coaxial: While cable internet over coaxial lines can offer high speeds (up to 1 Gbps), it is typically a shared medium, and its maximum throughput and latency performance are inferior to a dedicated fiber-optic connection.

1. Kurose

J. F.

& Ross

K. W. (2021). Computer Networking: A Top-Down Approach (8th ed.). Pearson. In Chapter 1

Section 1.2.2 "Access Networks

" the authors compare residential access technologies

explicitly stating that Fiber-to-the-Home (FTTH) can provide speeds up to 10 Gbps

significantly exceeding the typical speeds of DSL (up to 100 Mbps) and cable (up to 1 Gbps).

2. MIT OpenCourseWare. (2011). 6.02 Introduction to EECS II: Digital Communication Systems

Fall 2011. Massachusetts Institute of Technology. Lecture 14

"Wireline Communications

" discusses the physical properties of different media. The lecture notes detail how optical fiber has a bandwidth potential in the terahertz (THz) range

which is orders of magnitude greater than the megahertz (MHz) range available on copper twisted-pair (DSL) or coaxial cables.

3. Indiana University. (2023

October 24). About broadband internet connection types. University Information Technology Services Knowledge Base. Retrieved from https://kb.iu.edu/d/aium. This document compares common broadband technologies and states

"Fiber optic is the fastest and most reliable

but also the most expensive... Cable is usually faster than DSL... Satellite is a good option for rural areas where other broadband services are unavailable." This hierarchy clearly places fiber at the top for speed.

Configuring the multifunction printer to scan directly to a Server Message Block (SMB) share is the most secure option. This method allows the data to be saved to a centralized, secure location on a file server. Access to this specific network share can then be strictly controlled using Access Control Lists (ACLs), granting permissions only to the user accounts of the select group of executives. This ensures that the confidential data is protected both at rest on the server and by limiting access to only authorized individuals, providing a robust and auditable trail. This approach avoids the inherent insecurities of unencrypted email and the risks associated with manual handling.

A. Standard email protocols are often unencrypted, making documents vulnerable to interception as they travel across the network.

B. Manual distribution is a physical process, not a technical configuration, and introduces a high risk of document loss, unauthorized copying, or human error.

C. Badge access secures the physical use of the printer itself, such as releasing a print job, but it does not secure the digital path or destination of a scanned document.

1. Official Vendor Documentation: Microsoft Corporation. (2023). SMB security enhancements. Microsoft Learn. In the section "SMB Encryption

" the documentation details how SMB 3.0 and later versions provide end-to-end encryption of SMB data

which protects data from eavesdropping attacks on untrusted networks. This supports the security of the SMB protocol used in the correct answer. (Reference: learn.microsoft.com/en-us/windows-server/storage/file-server/smb-security)

2. Official Vendor Documentation: HP Development Company

L.P. (2021). HP JetAdvantage Security Manager 3.2 - Administrator Guide. In Chapter 4

"Creating and deploying policies

" the guide discusses configuring device settings

including "Scan to Folder Settings

" which allows administrators to define secure network folder destinations (SMB or FTP) and manage credentials

enforcing secure data handling directly from the device. (Reference: Page 35

Section: "Scan to Folder Settings").

3. University Courseware: Saltzer

J. H. (1979). On the Naming and Binding of Network Destinations. MIT Laboratory for Computer Science. This foundational paper

often cited in network systems courses

discusses the principles of binding services to network locations. Applying this

an SMB share provides a persistent

securable network destination

unlike an email address which is primarily a routing instruction. The security is enforced at the destination (the file server) through its access control mechanisms. (Reference: Section 4

"Binding"). DOI: https://doi.org/10.1007/BFb0024439

The scenario describes a situation where a projector is receiving a signal and the source resolution is correct, but the resulting image is distorted. This distortion, such as the image appearing stretched or squashed, is a classic symptom of a mismatched aspect ratio. The aspect ratio is the proportional relationship between the width and height of the image. If the laptop is outputting a 16:9 (widescreen) signal but the projector is configured for a 4:3 (standard) aspect ratio, it will distort the image to fit the incorrect shape.

B. The laptop's video card has failed: A failed video card would typically result in no signal, severe visual artifacts (like lines or incorrect colors), or system crashes, not a consistently distorted image.

C. The projector's bulb is burned out: A burned-out bulb would result in no light output, meaning there would be no image at all, rather than a distorted one.

D. The display brightness needs to be adjusted: Incorrect brightness settings would make the image too dim or too bright but would not alter its shape or cause geometric distortion.

1. University of Wisconsin-Madison

Division of Information Technology (DoIT) KnowledgeBase. In the troubleshooting guide for classroom projectors

it states: "If the image on the screen appears stretched or distorted

the aspect ratio may be incorrect. Use the projector remote to change the aspect ratio. The 'Aspect' button may be on the remote itself

or it may be in the projector menu." (Document ID: 8511

Section: "Troubleshooting Projector Image Issues").

2. Epson PowerLite Projector User's Guide. In the "Solving Image Problems" troubleshooting section

a common issue listed is "The image is stretched..." The recommended solution is to "Press the [Aspect] button on the remote control to select the correct aspect ratio" or adjust the "Aspect" setting in the projector's menu system. (Reference: Epson PowerLite 1780W/1781W/1785W/1795F User's Guide

Page 88

"Image Problems").

3. Andrews

J. (2022). A+ Guide to IT Technical Support (11th ed.). Cengage Learning. In the context of display troubleshooting

the text explains that the aspect ratio (e.g.

4:3

16:9

16:10) is a critical display setting. A mismatch between the native resolution/aspect ratio of the display and the signal being sent can cause the image to be distorted

stretched

or have black bars. (Chapter 8: Supporting Windows

Section: "Display Settings").

Radio-frequency identification (RFID) is the most suitable technology for inventory tracking in a warehouse. RFID systems use radio waves to communicate with tags attached to items, allowing for the simultaneous scanning of multiple objects from a distance without requiring a direct line of sight. This capability significantly improves the efficiency and accuracy of inventory counts compared to other technologies. Passive RFID tags, which are unpowered and inexpensive, are ideal for tracking a large volume of goods within a small warehouse environment.

A. Near-field communication (NFC) is incorrect because its extremely short operational range (a few centimeters) makes it impractical for scanning inventory across a warehouse.

C. Bluetooth, while used for asset tracking (e.g., BLE beacons), is generally less efficient and scalable for rapidly scanning thousands of individual inventory items compared to dedicated RFID systems.

D. 802.11 (Wi-Fi) is a wireless networking protocol designed for data communication between devices like computers and routers, not for tagging and tracking individual, non-powered inventory items.

1. Want

R. (2006). An Introduction to RFID Technology. IEEE Pervasive Computing

5(1)

25-33. https://doi.org/10.1109/MPRV.2006.2. (In Section "RFID Applications

" the paper details its use in supply-chain management for tracking goods from manufacturing to the point of sale

highlighting its advantage in warehouse settings over barcodes).

2. MIT OpenCourseWare. (2005). MAS.962 Special Topics in Media Technology: Smart Objects

Lecture 10: RFID. Massachusetts Institute of Technology. Retrieved from https://ocw.mit.edu/courses/mas-962-special-topics-in-media-technology-smart-objects-spring-2005/resources/lec10rfid/. (The lecture notes on slides 4-7 and 21-23 compare RFID's capabilities

such as non-line-of-sight and multiple-tag reading

against other technologies

establishing its suitability for inventory applications).

3. Zebra Technologies. (2021). The Next-Generation Warehouse: Five-Year Technology Outlook Report. (This official vendor documentation details the industry-wide adoption of RFID for inventory accuracy and visibility in warehouse operations. Section "Inventory Management

" page 6

explicitly identifies RFID as a key technology for automating inventory tracking).

Two-factor authentication (2FA) is a security process that requires users to provide two different authentication factors to verify their identity. These factors are categorized as something you know (e.g., password), something you have (e.g., a mobile device), and something you are (e.g., a fingerprint). A mobile authenticator application generates a one-time password or a push notification on a user's device, which serves as the "something you have" factor. This is a direct and common method for implementing 2FA to enhance the security of systems like a human resources portal.

B. Connect to the company's Wi-FI: This is a network-based access control policy, defining a condition for access rather than serving as a second authentication factor.

C. Connect through the VPN: A Virtual Private Network (VPN) provides a secure communication channel; it is an access method, not an authentication factor for an application.

D. Use a bastion server: A bastion server is a hardened network gateway for administrative access; it is a security architecture component, not a user authentication factor.

1. National Institute of Standards and Technology (NIST). (2017). Special Publication 800-63B

Digital Identity Guidelines: Authentication and Lifecycle Management.

Section 5.1.5

"One-Time Passwords (OTPs)": This section details the use of OTPs generated by authenticators

including software-based authenticators on mobile devices

as a "something you have" factor. This directly supports the use of a mobile authenticator application for 2FA.

2. Perrig

A.

& Far-Rive

J. (2021). 15-349/18-338/18-732 Introduction to Computer Security

Lecture 15: Authentication. Carnegie Mellon University

School of Computer Science.

The course lecture notes define Multi-Factor Authentication (MFA) and provide examples of the three factors. Under "Something You Have

" it explicitly lists "Authenticator App on a phone

" validating option A as a correct implementation of a second factor.

3. Boneh

D.

& Mazières

D. (2023). CS 155: Computer and Network Security

Lecture 13: Web Security - User Authentication. Stanford University.

The lecture materials discuss two-factor authentication

describing the use of a second device like a phone that runs an app (e.g.

Google Authenticator) to generate a time-based one-time password (TOTP) as a common second factor. This aligns with the correct answer.

File Transfer Protocol (FTP) is a standard network protocol used for transferring computer files between a client and server on a computer network. It operates using two separate TCP connections: a control connection on port 21 for commands and a data connection on port 20 (in active mode) for the actual file transfer. By default, FTP transmits all data, including usernames, passwords, and file content, in cleartext, which means it is not encrypted and can be intercepted.

A. SNMP (Simple Network Management Protocol) primarily uses UDP ports 161 and 162 for managing and monitoring network devices, not TCP ports 20/21.

B. SSH (Secure Shell) uses TCP port 22 and is designed for security, encrypting all data transmitted to prevent eavesdropping.

D. Telnet uses TCP port 23 for remote command-line access. While it does transfer data in cleartext, it does not use ports 20/21.

---

1. Internet Assigned Numbers Authority (IANA). (2023). Service Name and Transport Protocol Port Number Registry.

Reference: The official registry lists ftp-data on TCP port 20 and ftp (control) on TCP port 21. It also lists ssh on TCP port 22

telnet on TCP port 23

and snmp on UDP port 161. This document is the authoritative source for well-known port assignments.

2. Postel

J.

& Reynolds

J. (1985). RFC 959: File Transfer Protocol. Internet Engineering Task Force (IETF).

Reference: Section "Data Connection Management" specifies the use of the server's control port minus one (21-1=20) as the default data port. The "Security Considerations" section explicitly states that the protocol does not provide for encryption.

3. Kurose

J. F.

& Ross

K. W. (2021). Computer Networking: A Top-Down Approach (8th ed.). Pearson.

Reference: Chapter 2

Section 2.5 "Application-Layer Protocols: FTP". The text describes FTP's use of two parallel TCP connections: a control connection on port 21 and a data connection on port 20. It explicitly notes

"Both the user name and password

as well as commands

are sent in cleartext..." which highlights its lack of security.

The objective is to enforce two-factor authentication (2FA) for external connections while bypassing it for trusted internal connections, such as the office Wi-Fi. The most appropriate and standard method to achieve this is by configuring the authentication system to recognize the office network as a trusted location. Implementing an allow list (whitelisting) for the office's static public IP address or internal IP range creates an exception rule. This rule instructs the system to not prompt for a second factor when a user's connection originates from this trusted, pre-approved location, thereby resolving the issue without weakening security for remote access.

A. Disabling Wi-Fi is a counter-productive measure that disrupts business operations and fails to address the actual 2FA configuration problem.

C. Removing 2FA would completely negate the intended security enhancement, leaving all accounts vulnerable, especially to external threats.

D. Changing the token type from soft to hard does not alter the conditional logic that determines when the 2FA prompt is triggered.

1. Microsoft Corporation. (2023). Use the location condition in a Conditional Access policy. Microsoft Learn.

Reference: In the section "Named locations

" the documentation explains that administrators can define specific IP address ranges (e.g.

a corporate headquarters network) as trusted locations. These locations can then be used in policies to "bypassing multi-factor authentication for users who sign in from their corporate network." This directly supports using an IP-based allow list as an exception.

2. University of California

Berkeley. (n.d.). Duo - CalNet 2-Step. Berkeley Information Security Office.

Reference: University documentation on implementing Duo 2FA often describes features for managing authentication prompts. While not a formal course

this material reflects standard IT practice in a reputable academic institution. It outlines how network location policies can be used to differentiate between on-campus (trusted) and off-campus (untrusted) connections to adjust 2FA requirements

aligning with the principle of IP allow listing.

3. Stallings

W.

& Brown

L. (2018). Computer Security: Principles and Practice (4th ed.). Pearson.

Reference: Chapter 8

"User Authentication

" discusses context-based authentication. The text explains that authentication systems can use contextual information

such as a user's IP address

to make a risk assessment. A login attempt from a known

trusted IP address (like a corporate network) is considered lower risk and may be subject to less stringent authentication requirements

such as bypassing a second factor. This academic principle underpins the solution in option B.

The question describes an issue with an external webcam. According to the CompTIA troubleshooting methodology, the first step should be to address the most simple and obvious potential causes. For any external peripheral, this involves verifying the physical connection. Reseating the webcam—unplugging it from its port (typically USB) and plugging it back in—is the quickest and most direct way to rule out a loose or faulty connection. This action forces the operating system to re-initialize the device and can resolve many common connectivity issues without resorting to more time-consuming software or firmware troubleshooting.

A. Researching new webcam firmware is a more advanced step, appropriate only after confirming basic connectivity and driver integrity.

B. Restarting the computer is a general fix, but reseating the specific problematic device is a more targeted and immediate first step.

D. Reinstalling software and drivers is a valid troubleshooting step but should be performed after physical connections have been verified as secure.

1. CompTIA A+ Core 1 (220-1101) Exam Objectives

Version 5.0

Section 5.1

"Given a scenario

use the best practice methodology to resolve problems." The methodology implicitly prioritizes checking physical connections as part of establishing a theory of probable cause (e.g.

"Question the obvious"). A loose connection is a primary and obvious potential cause for an external device failure.

2. Microsoft Corporation

"Troubleshoot problems with your webcam in Windows

" Document ID: 8f778273-e41c-463b-a80a-643a0f281d7c

Microsoft Support. In the troubleshooting steps

Microsoft advises users to "Check your connections" and "Make sure that your webcam is connected to your PC" as an initial step.

3. Princeton University

Office of Information Technology

"OIT KnowledgeBase - Troubleshooting Computer Problems

" Doc 1052. The guide outlines a general troubleshooting process

stating

"Check the connections. Make sure all cables are plugged in securely." This principle is fundamental to hardware troubleshooting and applies directly to external peripherals like a webcam.

The issue described is a framing problem, where the camera's field of view is not correctly capturing the subject. This is a direct result of the physical positioning of the external webcam. Unlike an integrated webcam with a fixed position, an external one must be manually placed and angled. If it is on an uneven surface or not aimed properly, it will only capture a portion of the user's face. This is a physical setup issue, not a technical malfunction related to drivers, connectivity, or software compatibility, which would typically present as a non-functional device or poor image quality (e.g., freezing, artifacts).

B. A driver issue would more likely cause the webcam to be unrecognized, malfunction entirely, or have poor video quality, not a consistent framing error.

C. The specific USB port used affects data transfer speed and power but does not influence the camera's physical angle or what it sees.

D. OS incompatibility would typically prevent the webcam from being detected or functioning at all, rather than causing a partial image due to poor physical aim.

1. University of Wisconsin-Madison

Division of Information Technology (DoIT) KnowledgeBase. "Web Conferencing - Webcam Troubleshooting

" Document 100007

Published 2020-04-20. The document lists "Check your camera's physical placement" as a primary troubleshooting step

advising users to "Make sure your webcam is sitting on a level surface and is at eye level." This directly supports that incorrect placement causes framing issues.

2. Logitech Official Vendor Documentation. "C920s Pro HD Webcam Setup Guide

" Part Number: 620-009263.003. The section "POSITIONING YOUR WEBCAM" provides explicit instructions and diagrams for placing the webcam on a monitor or tripod to achieve the correct angle and framing

underscoring that physical placement is key to a proper image.

3. University of Michigan

Information and Technology Services. "Troubleshooting Audio and Video Issues in a Video Conference

" Published 2023-09-26. In the "Video Issues" section

the first recommendation is to "Check that your camera is uncovered and pointing toward you

" highlighting that physical orientation is the most fundamental check for video display problems.

The error message, "An attempt to resolve the hostname has failed," is a direct indication of a Domain Name System (DNS) issue. For a client to join a Windows domain, it must be able to locate a domain controller by resolving its name. The ipconfig /all output shows the client is using 192.168.1.1 (the default gateway) as its DNS server. In a typical domain environment, clients must be configured to use the domain controller's IP address for DNS, as the domain controller hosts the specific DNS records (like SRV records) required to locate domain services. The current configuration prevents the client from finding the domain controller, thus causing the join to fail.

B. Physical address: The physical (MAC) address operates at Layer 2 for local network communication and is not used for resolving domain names.

C. Subnet mask: The subnet mask is correctly configured for the network. An incorrect mask would cause general connectivity problems, not a specific name resolution failure.

D. IPv4 address: The client's IPv4 address is valid for the configured subnet and is not the cause of a hostname resolution error.

E. Default gateway: The default gateway is used for routing traffic to other networks. While essential for overall connectivity, its misconfiguration would not produce this specific DNS error.

1. Microsoft Corporation. (2023). Troubleshooting domain join error messages. Microsoft Learn. Retrieved from https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/troubleshooting-domain-join-error-messages.

Reference Specifics: In the table of error messages

the cause for "An attempt to resolve the DNS name of a domain controller in the domain being joined has failed" is listed as: "Verify that this client is configured to reach a DNS server that can resolve DNS names in the target domain." This directly confirms the issue is DNS configuration.

2. Microsoft Corporation. (2009). How DNS Support for Active Directory Works. Microsoft TechNet. Retrieved from https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc781627(v=ws.10).

Reference Specifics: The section "Locating a Domain Controller" explains that a client computer locates a domain controller by querying DNS for a service (SRV) resource record. This process fails if the client's configured DNS server does not host or cannot resolve records for the target domain.