CompTIA A+ 2026: The Entry-Level IT Career Cert

What IT hiring managers mean when they say “A+ required”

The A+ requirement in most entry-level IT job descriptions signals that the candidate can identify hardware components by sight, troubleshoot a non-booting system with a structured diagnostic process, install and configure a Windows workstation without assistance, and navigate a basic security policy. A+ is the standardised proof of that floor of competence. The DoD 8570.01-M mapping — now transitioning to DoD 8140 — means the credential is not just employer convention; it is a regulatory gate for federal government support roles and DoD contractor positions at the IAT Level I tier.

The exam does not test deep specialisation in any single area. It tests broad operational competence across the full hardware-to-software-to-security stack that a level-1 support technician needs to function on day one. Before A+, the only signal an employer had was interview performance and stated experience. After A+, they have a vendor-neutral baseline that holds across every hardware vendor, OS edition, and client environment.

Core 1 (220-1101) — Domain Breakdown

Five domains, 675/900 to pass, up to 90 questions in 90 minutes.

Domain 1 — Mobile Devices (15%)

Laptops, smartphones, tablets, and their peripherals. The exam tests physical installation — swapping laptop RAM, replacing M.2 SSDs, swapping batteries — and connection standards: USB-C, Thunderbolt 4, Bluetooth 5.x, NFC, Lightning vs USB-C. For Android and iOS: configuring email accounts via IMAP/POP3/Exchange ActiveSync, enabling biometric locks, remote wipe via MDM. Docking stations: display outputs (HDMI, DisplayPort, USB-C Alt Mode), USB hub behaviour, power delivery specs. Questions present a symptom (laptop fan loud during video calls) and ask for the most probable cause from a list — thermal paste degradation and blocked vents are the canonical answers for CPU throttling symptoms.

Domain 2 — Networking (20%)

Protocols and ports must be memorised: HTTP 80, HTTPS 443, SSH 22, RDP 3389, SMTP 25, IMAP 143, POP3 110, DNS 53, DHCP 67/68, SMB 445, FTP 20/21. IPv4: CIDR notation, subnetting, private ranges (RFC 1918 — 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16). Wireless standards: 802.11n dual-band, 802.11ac (Wi-Fi 5), 802.11ax (Wi-Fi 6) with MU-MIMO and OFDMA. Network hardware: switches (managed vs unmanaged, port VLAN assignment), routers (NAT, DHCP scope), access points (2.4 GHz channel overlap — use channels 1, 6, 11). Command-line tools you must know by output: ipconfig, ping, tracert, nslookup, netstat, arp -a. Physical tools: cable tester, toner probe, punchdown tool, crimp tool, loopback plug, Wi-Fi analyser.

Domain 3 — Hardware (25%)

The highest-weighted Core 1 domain. CPUs: Intel LGA vs AMD AM sockets, core counts, hyperthreading, L1/L2/L3 cache hierarchy. RAM: DDR4 vs DDR5 speeds and voltages, SO-DIMM vs DIMM, single/dual/quad channel, ECC vs non-ECC. Storage: SATA vs NVMe M.2 bandwidth, 2.5” vs 3.5” mechanical drives, SSD vs HDD endurance tradeoffs. RAID: 0 (speed, no redundancy), 1 (mirroring), 5 (striping with parity, minimum 3 drives), 10 (striping + mirroring, minimum 4 drives). Power supplies: modular vs semi-modular, wattage calculation, ATX 24-pin, EPS 8-pin CPU, PCIe 6/8-pin GPU connectors. Motherboards: ATX / Micro-ATX / Mini-ITX form factors, BIOS/UEFI settings, TPM 2.0 (Windows 11 requirement). Displays: LCD vs OLED, IPS vs TN vs VA panels. Printers: laser (corona wire, drum, toner, fuser — know the imaging process in order), inkjet (printhead maintenance), thermal (heat-sensitive paper, no consumable ink).

Domain 4 — Virtualization and Cloud Computing (11%)

Cloud service models: IaaS (raw compute and storage — you manage OS and up), PaaS (managed runtime — you manage the application code), SaaS (delivered application — vendor manages everything). Deployment models: public (shared provider infrastructure), private (dedicated), hybrid (mix of on-premises and public cloud), community (shared between organisations with common requirements). Virtualization: Type 1 hypervisors (bare-metal — VMware ESXi, Hyper-V) vs Type 2 (hosted — VirtualBox, VMware Workstation). Know VM snapshots (point-in-time rollback), virtual switches, and resource overcommitment concepts. The exam tests vocabulary and model selection, not hypervisor configuration syntax.

Domain 5 — Hardware and Network Troubleshooting (29%)

The A+ troubleshooting methodology is six steps — memorise them in order: (1) Identify the problem, (2) Establish a theory of probable cause, (3) Test the theory, (4) Establish a plan of action, (5) Implement the solution, (6) Verify full system functionality and document findings. This sequence is explicitly tested across both Core 1 and Core 2. Hardware symptoms to know: POST failures and beep codes, blank screens (reseated GPU, display cable, BIOS output port), CPU overheating (thermal throttling, unexpected shutdown), HDD failure (clicking — mechanical; S.M.A.R.T. errors; slow boot from reallocated sectors), RAM errors (BSODs, POST failure, memory test failures), PSU failure (no POST, random shutdowns, burning smell). Network symptoms: APIPA addresses (169.254.x.x) indicate DHCP failure, IP conflicts, DNS failure vs connectivity failure (ping IP succeeds but ping hostname fails), NIC driver issues, duplicate MAC addresses on a switch.

Core 2 (220-1102) — Domain Breakdown

Four domains, 700/900 to pass, up to 90 questions in 90 minutes.

Domain 1 — Operating Systems (31%)

The heaviest Core 2 domain. Windows 10 and 11 are tested most deeply. Edition differences matter: Home lacks domain join, Group Policy editor, BitLocker, and Remote Desktop host capability — those require Pro or Enterprise. Disk management: GPT vs MBR (GPT required for drives >2 TB and UEFI boot), primary vs extended partitions, dynamic vs basic disks. File systems: NTFS (Windows drives — journaling, permissions, encryption, no 4 GB file size limit), FAT32 (cross-platform compatibility, 4 GB file size limit), exFAT (large external drives and flash media). Windows command-line tools: chkdsk (disk error checking), sfc /scannow (system file integrity), dism (component store repair), robocopy (robust file copy with retry), netsh (network configuration). Administrative tools: Task Manager (processes, performance, startup), Event Viewer (application/system/security logs), Device Manager (driver status), Disk Management (partition operations), Group Policy Editor (gpedit.msc — Pro/Enterprise only). macOS basics: Finder, System Preferences, Time Machine, FileVault encryption, Gatekeeper application security. Linux basics: file hierarchy (/etc config, /var logs, /home users, /bin binaries), chmod/chown, package managers (apt / yum).

Domain 2 — Security (25%)

Physical security controls: cipher locks, smart card / RFID badge readers, biometric access, cable locks, privacy screens, security cameras, mantrap entries. Logical security: UAC (User Account Control), least privilege, MFA (something you know, have, and are — combining two or more categories). Malware types — know the distinctions: virus (requires host file), worm (self-propagating, no host needed), Trojan (disguised as legitimate software), ransomware (encrypts data for payment), spyware (monitors activity), adware (unwanted advertising), rootkit (hides from OS detection), keylogger (captures keystrokes), botnet (coordinated network of infected hosts). Social engineering attacks: phishing (generic email), spear phishing (targeted), whaling (targets executives), vishing (voice), smishing (SMS), tailgating, shoulder surfing, dumpster diving, pretexting. Endpoint controls: Windows Defender (built-in AV and firewall), BitLocker (drive encryption — requires TPM 2.0 for Pro/Enterprise), EFS (file-level encryption), software firewall rules, removable media policies. Wireless security: WPA3-Personal (SAE handshake, replaces WPA2-Personal), WPA3-Enterprise (802.1X / RADIUS), disabling SSID broadcast (weak obscurity, not real security), MAC address filtering (spoofable, also weak).

Domain 3 — Software Troubleshooting (22%)

Windows recovery tools: System Restore (rolls back to a restore point, no effect on personal files), Startup Repair (fixes boot loader and BCD issues), sfc /scannow (repairs corrupted Windows system files against the component store), DISM (repairs the component store itself — run before SFC if SFC fails), Windows Recovery Environment (WinRE — Shift+Restart or bootable media). BSOD analysis: error codes identify the failure domain — IRQL_NOT_LESS_OR_EQUAL typically indicates a driver issue; NTFS_FILE_SYSTEM typically indicates storage corruption. Application crashes: check Event Viewer → Application log for exception details, crash dump location. Slow performance: Task Manager → Performance tab for CPU/RAM/disk bottlenecks, Processes tab for runaway processes. Corrupt user profiles: create a new local profile, migrate AppData and Documents. Mobile troubleshooting: apps not updating (check storage and network), excessive battery drain (background app refresh, location services), sync failures (credential expiry, outdated OS).

Domain 4 — Operational Procedures (22%)

ESD prevention: antistatic wrist strap (connected to chassis ground), antistatic mat, antistatic bags for component transport, never touch component traces or solder joints directly. Fire safety: Class C (electrical) fires require CO2 or dry-chemical extinguishers — water is strictly prohibited. MSDS/SDS sheets for hazardous materials in the workplace. Proper disposal: lithium batteries (regulated — do not landfill), CRT monitors (contain lead and high-voltage components, require specialist recycling), toner cartridges (manufacturer recycle programs), e-waste (follow local WEEE regulations). Scripting awareness: batch files (.bat/.cmd) for Windows task automation, PowerShell for Windows administration and remote management, Bash scripts for Linux/macOS. The exam tests when scripting is appropriate (repetitive tasks, consistent configuration deployment) not script syntax. Documentation: ticketing system lifecycle (create, update, escalate, resolve, close), change management (approval before changes in production, rollback plans), asset inventory (serial numbers, location, assignment). Remote access: RDP (port 3389 — requires Pro/Enterprise host), VPN (client-to-site for remote workers, site-to-site for branch offices), SSH (port 22, command-line remote access to Linux/macOS), screen-sharing tools. Professional communication: accurate ETAs, proactive updates before clients chase, documenting what was changed and why in the ticket, following escalation paths rather than attempting out-of-scope fixes.

PBQs (performance-based questions) load first in every A+ exam. CompTIA places them at the front deliberately — you cannot skip past them and return. Each PBQ simulates a real scenario: dragging components to build a compliant workstation, typing commands in a simulated terminal, or configuring settings in a virtual interface. They carry higher per-question weight than standard multiple choice. The most common failure mode is over-thinking: most PBQ scenarios have one clearly correct answer based on the domain knowledge, and candidates who spend too long second-guessing exhaust the time they need for the remaining questions.

Performance-based questions and exam strategy

Unlike standard multiple-choice items, PBQs cannot be guessed. A drag-and-drop asking you to assemble a workstation with specific RAM capacity in dual-channel configuration requires knowing what dual-channel means (two identical RAM sticks in the correct coloured slots) and how to calculate total capacity. A terminal PBQ asking you to identify why a host cannot reach the internet requires running the right commands in the right order: ipconfig to check the IP address and gateway, ping 127.0.0.1 to confirm the TCP/IP stack is functional, ping <gateway> to confirm local network connectivity, ping 8.8.8.8 to test internet routing, nslookup to separate DNS failures from routing failures.

Time allocation: with 90 questions in 90 minutes, the average target is one minute per question. PBQs typically take 3–6 minutes each. Work through PBQs methodically, commit to answers, and bank time for the multiple-choice section. Flag questions you are genuinely unsure about and return to them — unlike PBQs, standard multiple-choice can be revisited within the exam session.

A+ in the certification landscape

A+ is not a prerequisite for any other CompTIA exam — Network+, Security+, and Linux+ can all be attempted without it. In practice, the Core 1 networking domain provides direct overlap with Network+ concepts, and the Core 2 security domain covers vocabulary that Security+ then deepens significantly. Candidates who pass both A+ exams typically find Network+ (N10-009) achievable within 60–90 additional days of study, and Security+ (SY0-701) achievable within 90–120 days after A+.

The DoD 8570 framework positions A+ as IAT Level I alongside Network+ — holding either satisfies the Level I baseline requirement. For US federal government and DoD contractor roles, A+ is therefore a literal employment prerequisite, not just a hiring preference. For non-government roles, A+ signals an employer that a candidate can be deployed immediately into a Tier 1 support environment with minimal onboarding overhead — reducing hiring risk rather than adding premium skills.

For career trajectory: help desk and desktop technician roles with A+ certification pay 10–15% above non-certified candidates in equivalent roles according to CompTIA salary survey data. The certification does not gate access to senior roles — for that, the pathway runs through Network+, Security+, and then vendor-specific certs (AWS, Azure, Cisco) or advanced CompTIA credentials (CySA+, CASP+). A+ is the foundation, not the ceiling.

Why it matters for cert candidates

The fastest A+ study path: spend two weeks on Core 1 Hardware and Troubleshooting domains (54% of the exam combined), then two weeks on Core 2 Operating Systems and Security domains (56% of the exam combined), then one final week on PBQ practice. Use a physical or virtual lab environment — installing Windows 11, configuring RAID in a VM, and running sfc and chkdsk on real systems cements the knowledge faster than flashcards alone. The official CompTIA exam objectives list every testable topic for 220-1101 and 220-1102 — use them as your study checklist, not a third-party guide’s table of contents.

Test your CompTIA A+ knowledge across hardware, OS, networking, and security with exam-style practice questions on CertQuests.

Start A+ Practice Questions →