ACAS - 5.3 Course UPDATED Exam
Questions and CORRECT Answers
What is ACAS? - CORRECT ANSWER- ACAS is a network-based security compliance and
assessment capability
designed to provide awareness of the security posture and network health of
DoD networks.
Which of the following best describes the SecurityCenter? - CORRECT ANSWER- The
central console that provides continuous asset-based security and
compliance monitoring
A vulnerability is a weakness or an attack that can compromise your system. - CORRECT
ANSWER- False (a vulnerability does not include an attack)
The Nessus scanner monitors data at rest, while the PVS monitors data in motion. -
CORRECT ANSWER- True
PVS detects vulnerabilities based on network traffic instead of actively scanning hosts. -
CORRECT ANSWER- True
Which ACAS component performs active vulnerability and compliance scanning? -
CORRECT ANSWER- Nessus
CMRS is a tool to provide DoD component- and enterprise-level situational awareness by
quantitatively displaying an organization's security posture. - CORRECT ANSWER- True
Select the Task Order for the Implementation of Assured Compliance Assessment Solution
(ACAS) for the Enterprise: - CORRECT ANSWER- 13-670
Which page loads by default when you log in to SecurityCenter? Select the best answer. -
CORRECT ANSWER- Dashboard
, Which of the following pages show the date and time of the most recent plugin updates? -
CORRECT ANSWER- Plugins, Feeds
Which page allows you to set your local time zone? - CORRECT ANSWER- Profile
What is an organization? - CORRECT ANSWER- A group of individuals who are responsible
for a set of common assets
What is a scan zone? - CORRECT ANSWER- A defined static range of IP addresses with an
associated Nessus scanner(s)
What is the maximum size of a SecurityCenter 5 Repository? - CORRECT ANSWER- 32 GB
The IP address(es) you are scanning must be contained in both the definition of the scan zone
and the definition of the repository. - CORRECT ANSWER- True
What SecurityCenter role is responsible for setting up scan zones? - CORRECT ANSWER-
Administrator
How can you get your SecurityCenter plugin updates? - CORRECT ANSWER-
Automatically, from DISA's plugin server, Manually from the DoD Patch Repository
The SecurityCenter Plugins menu displays a list of script files used by Nessus and PVS
scanners to collect and interpret vulnerability, compliance, and configuration data. -
CORRECT ANSWER- True
Which of the following are options you can consider for scanning stand-alone networks? -
CORRECT ANSWER- Install both Nessus and SecurityCenter on a Linux Laptop using
Kickstart, Install both Nessus and SecurityCenter in virtual machines on a Windows 7 laptop,
Detach a Nessus scanner from its SecurityCenter for scanning purposes and then reattach to
SecurityCenter to upload scan results
Components of an Active Vulnerability Scan consist of: a policy, credentials, scan zone,
schedule, _________, and __________. - CORRECT ANSWER- Repository, Target list
Questions and CORRECT Answers
What is ACAS? - CORRECT ANSWER- ACAS is a network-based security compliance and
assessment capability
designed to provide awareness of the security posture and network health of
DoD networks.
Which of the following best describes the SecurityCenter? - CORRECT ANSWER- The
central console that provides continuous asset-based security and
compliance monitoring
A vulnerability is a weakness or an attack that can compromise your system. - CORRECT
ANSWER- False (a vulnerability does not include an attack)
The Nessus scanner monitors data at rest, while the PVS monitors data in motion. -
CORRECT ANSWER- True
PVS detects vulnerabilities based on network traffic instead of actively scanning hosts. -
CORRECT ANSWER- True
Which ACAS component performs active vulnerability and compliance scanning? -
CORRECT ANSWER- Nessus
CMRS is a tool to provide DoD component- and enterprise-level situational awareness by
quantitatively displaying an organization's security posture. - CORRECT ANSWER- True
Select the Task Order for the Implementation of Assured Compliance Assessment Solution
(ACAS) for the Enterprise: - CORRECT ANSWER- 13-670
Which page loads by default when you log in to SecurityCenter? Select the best answer. -
CORRECT ANSWER- Dashboard
, Which of the following pages show the date and time of the most recent plugin updates? -
CORRECT ANSWER- Plugins, Feeds
Which page allows you to set your local time zone? - CORRECT ANSWER- Profile
What is an organization? - CORRECT ANSWER- A group of individuals who are responsible
for a set of common assets
What is a scan zone? - CORRECT ANSWER- A defined static range of IP addresses with an
associated Nessus scanner(s)
What is the maximum size of a SecurityCenter 5 Repository? - CORRECT ANSWER- 32 GB
The IP address(es) you are scanning must be contained in both the definition of the scan zone
and the definition of the repository. - CORRECT ANSWER- True
What SecurityCenter role is responsible for setting up scan zones? - CORRECT ANSWER-
Administrator
How can you get your SecurityCenter plugin updates? - CORRECT ANSWER-
Automatically, from DISA's plugin server, Manually from the DoD Patch Repository
The SecurityCenter Plugins menu displays a list of script files used by Nessus and PVS
scanners to collect and interpret vulnerability, compliance, and configuration data. -
CORRECT ANSWER- True
Which of the following are options you can consider for scanning stand-alone networks? -
CORRECT ANSWER- Install both Nessus and SecurityCenter on a Linux Laptop using
Kickstart, Install both Nessus and SecurityCenter in virtual machines on a Windows 7 laptop,
Detach a Nessus scanner from its SecurityCenter for scanning purposes and then reattach to
SecurityCenter to upload scan results
Components of an Active Vulnerability Scan consist of: a policy, credentials, scan zone,
schedule, _________, and __________. - CORRECT ANSWER- Repository, Target list
