DISA ACAS EXAM QUESTIONS WITH COMPLETE SOLUTIONS

1-1Which one of these tools is the central console that provides continuous endpoint security and compliance monitoring? a. Nessus Active Vulnerability Scanner b. Nessus Manager c. Nessus Network Monitor d. T What is ACAS? a. ACAS is a system that ensures security for the DoD networks. b. ACAS is a system that monitors and corrects vulnerabilities to provide security for the DoD networks. c. ACAS is a network-based security capability designed to provide awareness of the security posture and network health of DoD net d. All of the above - cORRECT sOLUTION ACAS is a network-based security capability designed to provide awareness of the security posture and network health of DoD netw Select the Task Order for the most current Implementation of Assured Compliance Assessment Solution (ACAS) for the Enterprise. a. 13-0294 b. 16-0294 c. 18-0104 d. 20-0020 - cORRECT sOLUTION 20-0020 T/F A vulnerability is a weakness or an attack that can compromise your system. - cORRECT sOLUTION False T/F The Nessus scanner scans data at rest, while the NNM monitors data in motion. - cORRECT sOLUTION True A Nessus Agent is ___. a. The passive scanner that detects vulnerabilities by sniffing network traffic b. A lightweight program installed on the endpoint that gives visibility into assets that connect intermittently to the internet. c. Web Publishing feature gives T the ability to publish reports to target websites - cORRECT sOLUTION A lightweight program installed on the endpoint that gives visibility into assets that connect intermittently to the internet. 1-2Which page loads by default when you log in to T? a. Analysis b. Dashboard c. Reporting d. Scans - cORRECT sOLUTION Dashboard Which of the following pages displays the update schedule for updating the Active and Passive Plugins on the Security Manager's interface? a. Alerts b. Feeds c. Plugins d. Preferences e. System Status - cORRECT sOLUTION Feeds Which icon is used for launching a scan or report? - cORRECT sOLUTION Launch Button Which page allows you to set your local time zone? a. Dashboards b. Feeds c. Help d. Profile e. Workflow - cORRECT sOLUTION Profile Where do you find the software version of your T? a. Assurance Report Cards b. Reports c. About d. Alerts - cORRECT sOLUTION About What can you do on the Plugins page of T? a. Search for Specific Plugins b. View Plugin Details and Source c. Upload Custom Plugins d. All of the above - cORRECT sOLUTION All of the above Where do you find the user guide of your T? a. Dashboard - Assurance Report Cards b. Username Menu - Help c. Workflow - Alerts d. Reporting - Reports - cORRECT sOLUTION Username Menu - Help 1-3 Which of these is a a script file used to collect and interpret vulnerability, compliance, and configuration data? a. Organization b. Plugin c. Repository d. Scan Zone - cORRECT sOLUTION Plugin What is the maximum size of a T Repository? a. 16 GB b. 32 GB c. 64 GB d. 128 GB - cORRECT sOLUTION 64 GB T/F The IP address(es) you are scanning must be contained in both the definition of the scan zone and the definition of the repository. a. True b. False - cORRECT sOLUTION True What T role is responsible for setting up scan zones? a. Administrator b. Manager c. SecurityManager d. End User - cORRECT sOLUTION Administrator Per the ACAS contract, how can you get your T plugin updates? a. Automatically, from DISA's plugin server b. Manually from the DoD Patch Repository c. Download a copy from the vendor - cORRECT sOLUTION - Automatically, from DISA's plugin server - Manually from the DoD Patch Repository According to the ACAS contract, what are the three allowable options for scanning stand-alone networks? - cORRECT sOLUTION 1. Download Tenable and Nessus on Lunix system 2. Use VM for both 3. Remove Nessus scanner and leave Tenable, place in an isolated scanning environment Plugins are grouped into families, such as: a. AIX Local Security Checks b. Windows c. Red Hat Local Security Checks d. SCADA e. All of the above - cORRECT sOLUTION All of the above