ACAS Best Practice Knowledge Final Exam
Questions and Answers 2025
Today is Thursday, and you are getting ready to run your weekly
vulnerability scans. Your plugins were updated on Monday.
Select the correct answer based on your status.
a. In compliance because active plugins must be updated within 7 days
before TASKORD-mandated scans.
b. In compliance because active plugins must be updated within 14 days
before TASKORD-mandated scans.
c. Out of compliance because active plugins must be updated within 72
hours before TASKORD-mandated scans.
d. Out of compliance because active plugins must be updated within 24
hours before TASKORD-mandated scans. ...ANSWER... a
According to the ACAS contract, what are the allowable options for
scanning stand-alone networks?
Select the best answers from the ACAS Standalone Guide.
a. Install both Nessus and Tenable.sc on a Linux system using Kickstart.
b. Install both Nessus and Tenable.sc on a 64-bit Windows operating system
with a virtualization application.
P a g e 1 | 19
,c. Install Nessus as its own standalone system.
d. There are no approved standalone options. DISA mandates that you must
install all components on a Linux system, and nothing else. ...ANSWER...
abc
Components of an Active Vulnerability Scan consist of a scan policy,
schedule, credentials, scan zone, import repository, and __________.
Select the best answer to complete the statement.
a. User role
b. Endpoints/Targets
c. Assurance Report Cards
d. Asset Lists ...ANSWER... b
_________ are administrative level usernames and passwords (or SSH key
pairs) used in authenticated scans?
Select the best answer to complete the statement.
a. Audit files
b. Scan policies
c. Credentials
d. Asset lists ...ANSWER... c
P a g e 2 | 19
, Networks using Dynamic Host Configuration Protocol (DHCP) require that
this active scan setting be enabled to properly track hosts.
Select the best answer for the statement.
a. Rollover Option
b. Enable Safe Checks
c. Track hosts which have been issued new IP addresses
d. Remove vulnerabilities from scanned hosts that have been inactive for (X
days) ...ANSWER... c
How many import repositories can you select for a single scan?
Select the best answer to the question.
a. Only one
b. A maximum of three
c. You can select all your available repositories
d. As many as you like, if none of them are agent repositories
...ANSWER... a
Per the ACAS Best Practices Policy Deviations spreadsheet, which Port
Scan Range value tells the scanner to scan all ports?
Select the best answers to the question.
P a g e 3 | 19
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller TutorExpert. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $13.49. You're not tied to anything after your purchase.