I thought it was kinda rough because of all the areas covered. You might have a general question on organizational security and then something like what does v3 of the x.509 certificate cover. You never know how deep to go in each area. Another odd thing is it had some stuff that was in the a+ and the net+, like backups and port numbers. Overall I thought it was a good comprehensive test with some horribly worded questions thrown in for fun.