ACAS Training and Best Practice Review EXAM WITH MULTIPLE, CORRECTLY ANSWERED QUESTIONS ALREADY GRADED A+

ACAS Training and Best Practice
Review EXAM WITH MULTIPLE,
CORRECTLY ANSWERED QUESTIONS
ALREADY GRADED A+
A vulnerability will be marked as mitigated in the Tenable.sc repository if a subsequent scan
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




determines that the vulnerability is no longer present on the endpoint.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Select the correct answer. 8i 8i 8i




a. True
b. False - ANSWERa 8i 8i




Selectthe best answer.
8i 8i 8i 8i




a. Active Scan View 8i 8i




b. Vulnerability Summary 8i




c. IP Summary 8i




d. Remediation Summary - ANSWERc 8i 8i 8i




Nessus Agents are lightweight Nessus scanners installed on the endpoint, according to the
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




ACAS Agent Rapid Deployment Guide.
8i 8i 8i 8i 8i




Select the best answer. 8i 8i 8i




a. True
b. False - ANSWERa 8i 8i




Per the Best Practices Guide, which of the following statements are true? Select
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




the correct answer(s).
8i 8i 8i




a. The TASKORD defines several target types on which Nessus Agents are required to be
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




installed.
8i




b. Nessus Agents can be installed on addition endpoints above TASKORD requirement.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




c. Per the TASKORD organizations endpoints which leverage a Nessus Agents must
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




also be scanned with the Nessus active scanner using ACAS Best Practice Guide
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Agent Differential scan policy.
8i 8i 8i 8i




d. If you use Nessus Agents, then you don't need any other scanning tools for ACAS.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




e. All the above - ANSWERa b c
8i 8i 8i 8i 8i 8i




Nessus Agent and Manager use the same software.
8i 8i 8i 8i 8i 8i 8i

,Select the correct answer. 8i 8i 8i




a. True
b. False - ANSWERb 8i 8i




Per the Best Practices Guide, which of these statements is true. Select
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




8i the correct answers.
8i 8i




a. ACAS TASKORD 20-0020 FRAGO 3 clarifies that only DISA STIG Tenable Audit
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




files are to be used for configuration scanning in ACAS.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




b. DISA SCAP-compliant, automated benchmarks are still acceptable for ingest into
8i 8i 8i 8i 8i 8i 8i 8i 8i




CMRS.
8i




c. Audit files are proprietary formatted XML files that define how ACAS should check for
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




configuration with a specified benchmark.
8i 8i 8i 8i 8i




d. Tenable distributes audit files via the the Tenable.sc Feed that is used to update 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Tenable.sc
8i




e. None of the above - ANSWERa c d 8i 8i 8i 8i 8i 8i 8i




It has been 20 days since your last configuration (STIG) scan. Per FRAGO 2 of the Task
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Order 20-0020, which of the following statements reflects your current compliance status?
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Select the best answer. 8i 8i 8i




In compliance because configuration scans are only required every 30 days. In
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




compliance because vulnerability scans are only required every 21 days. Out of
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




compliance because configuration scans are required every 14 days. Out of
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




compliance because vulnerability scans are required every single day. -
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




ANSWERa
8i




Choose the Tenable.sc Severity Level that corresponds to the Configuration result.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Tenable re-used severity levels for configuration results.
8i 8i 8i 8i 8i 8i 8i




a. Critical
b. High
c. Medium
d. Info - ANSWERa. Not used with configuration
8i 8i 8i 8i 8i 8i




b. Failed configuration check 8i 8i




c. Unable to Determine/Error 8i 8i




d. Passed configuration check 8i 8i




Per the ACAS Best Practices Guide, which of the following Tenable.sc resources are
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




proprietary formatted XML files that define how ACAS should check for configuration
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




with a specified STIG?
8i 8i 8i 8i

, Select the best answer: 8i 8i 8i




a. Credentials
b. Queries
c. Policies
d. Audit Files - ANSWERd 8i 8i 8i




The Tenable Nessus vulnerability scanner allows you to perform compliance audits of
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




numerous platforms including (but not limited to) databases, Cisco, Unix, and Windows
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




configurations as wellas sensitive datadiscovery basedonregex contained inauditfiles.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Audit filesareXML-based text filesthat contain the specific configuration, file
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




permission, and access control tests to be performed.
8i 8i 8i 8i 8i 8i 8i 8i




LogintoTenableSecurityCenterviatheuserinterface. Click
8i 8i 8
i 8
i 8i 8i 8
i 8i 8i 8i




Scans > Audit Files.
8i 8i 8i 8i




TheAudit Files page appears.
8i 8i 8i 8i




Scanzone-ANSWERScan zones areareasof your network that youwanttotargetinan active scan
8i 8i 8i 8i 8i 8i 8
i 8i 8i 8i 8i 8i 8
i 8i 8i 8i 8i 8i




AssociatesanIPaddress or rangeofIPaddresses withoneor more scanners 8
i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




Youmust createscanzones inorder to runactive scansinTenableSecurity Center.
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




CVSS vs.VPR-ANSWERCVSS is theoverallscoreassignedtoavulnerability. CVEis
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




simply a list of all publicly disclosed vulnerabilities that includes the CVE ID, a
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




description, dates, andcomments. The CVSS score is not reported inthe CVE listing- you
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




must use the NVD to find assigned CVSS scores.
8i 8i 8i 8i 8i 8i 8i 8i 8i




Tenable calculates a dynamic VPR for most vulnerabilities. The VPR is a dynamic
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




companion to the data provided by the vulnerability's CVSS score, since Tenable updates
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




theVPRtoreflectthecurrent threat landscape.VPRvaluesrangefrom0.1- 10.0, with a higher
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




value representing a higher likelihood of exploit.
8i 8i 8i 8i 8i 8i 8i




Note: When you view these metrics on an analysis page organized by plugin (for example,
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




theVulnerabilities page), the metrics represent thehighest value assigned or calculated for a
8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i 8i




vulnerability associated with the plugin.
8i 8i 8i 8i 8i




Nessusscanners-ANSWERCollectsdataandreportsresultstoTenable.scconsoleCAT II
8i 8i 8
i 8
i 8i 8i 8
i 8i 8i 8i 8i 8i




8i vulnerability weight - ANSWER4 8i 8i 8i




CAT Ivulnerabilityweight - ANSWER10
8i 8i 8i 8i 8i




JFHQ-DODINOrder -ANSWERTASKORD 20-0020 8i 8i 8i 8i